Allow non-root users to install this extension

[vadim2404]

Currently, if non-root users try to install the extension create extension pg_idkit it fails with permission denied for language c.

In order to enable it, we need to change the attribute in the control file.

I fixed the template in pgrx some time ago (pgcentralfoundation/pgrx#1056), but, it seems, that you started the development of this extension earlier then I fixed the template.

[t3hmrman]

Hey @vadim2404 thanks for pointing this out, and linking to the previous PR, that explained some stuff I was confused about (i.e. when I look at the docs for .control files it suggests the opposite).

If I'm understanding this change correctly, we want to force the requirement for superuser as early as possible.

[t3hmrman]

Would you mind switching your commit message to follow conventional commits? Something like:

feat(security): require superuser in pg_idkit.control

[vadim2404]

@t3hmrman, I fixed the commit message. Thanks for pointing out.

We need the superuser privileges, because "C" language is marked as "untrusted" in Postgres. And, therefore, non-root users can't install the extension.

=> select lanname, lanpltrusted from pg_language;
 lanname  | lanpltrusted
----------+--------------
 internal | f
 c        | f
 sql      | t
 plpgsql  | t
(4 rows)

Time: 30.918 ms

[t3hmrman]

Ahhhh, thank you for the extra explanation! I see now why it's needed! Will merge and trigger a minor release ASAP!

[vadim2404]

I was happy to help! Thanks for the fast reaction!