Skip site navigation (1) Skip section navigation (2)

Re: client authentication towards postgresql in php?

From: Robert Treat <xzilla(at)users(dot)sourceforge(dot)net>
To: Daniel Struck <struck(dot)d(at)retrovirology(dot)lu>
Cc: pgsql-php(at)postgresql(dot)org
Subject: Re: client authentication towards postgresql in php?
Date: 2003-11-11 13:30:56
Message-ID: 1068557456.10942.14684.camel@camel (view raw or flat)
Thread:
Lists: pgsql-php
On Sun, 2003-11-09 at 10:52, Daniel Struck wrote:
> Hello,
> 
> 
> I am searching for a secure way to handle client authentication in php towards postgresql.
> 
> Let me explain what I like to setup:
> 
> Client will connect to the application via Apache.
> The authentication of the clients will be done over ssl and the certificates of the clients will be stored on smartcards.
> (I have written a small documentation how to setup this at www.opensc.org).
> Next I will read in the PHP application environment variables of apache to know if the user was correctly authenticated by apache.
> 
> In postgresql I would like to create for every client a user.
> Purpose: automatically log every action like update/delete of users by rules without requiring scripts in php.
> 
> The problem I have is to authenticate the client to postgresql.

If your actually creating a user inside the database for each user,
authentication is handled inside the database and passwords are held
inside the database.  When your php login script fires off, save the
user name/ password into a session and then use that info to build your
pg_connect strings. 

Or maybe I've missed something because this sounds a lot easier to do
than your making it out to be.

Robert Treat
-- 
Build A Brighter Lamp :: Linux Apache {middleware} PostgreSQL


In response to

Responses

pgsql-php by date

Next:From: Daniel StruckDate: 2003-11-11 13:54:25
Subject: Re: client authentication towards postgresql in php?
Previous:From: Lonnie VanZandtDate: 2003-11-10 17:54:58
Subject: Re: PHP & mySQL Designer

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group