Re: One Role, Two Passwords
| От | Josh Berkus |
|---|---|
| Тема | Re: One Role, Two Passwords |
| Дата | |
| Msg-id | 4D38E221.6090501@agliodbs.com обсуждение исходный текст |
| Ответ на | Re: One Role, Two Passwords (Daniel Farina <drfarina@acm.org>) |
| Ответы |
Re: One Role, Two Passwords
Re: One Role, Two Passwords |
| Список | pgsql-hackers |
> * Eventual Retirement of old credentials without having to issue ALTER
> statements (or really statements of any kind...) against application
> schema objects.
OK, that's a different goal. You want to be able to expire passwords
with an overlap period. That's quite different from wanting an
indefinfite number of passwords per role.
Mind you, the main way to do this right now ... and where you're going
to get pushback ... is using LDAP, ActiveDirectory or similar. At a
certain point we have to draw the line and say "PostgreSQL is not an
authtenication server". I don't know exactly where that line is, but
recognize that you're arguing about where to draw it.
-- -- Josh Berkus PostgreSQL Experts Inc.
http://www.pgexperts.com
В списке pgsql-hackers по дате отправления: