Skip site navigation (1) Skip section navigation (2)

Re: client authentication towards postgresql in php?

From: Bruno Wolff III <bruno(at)wolff(dot)to>
To: Daniel Struck <struck(dot)d(at)retrovirology(dot)lu>
Cc: Robert Treat <xzilla(at)users(dot)sourceforge(dot)net>,pgsql-php(at)postgresql(dot)org
Subject: Re: client authentication towards postgresql in php?
Date: 2003-11-11 18:47:52
Message-ID: 20031111184752.GA11772@wolff.to (view raw or flat)
Thread:
Lists: pgsql-php
On Tue, Nov 11, 2003 at 14:54:25 +0100,
  Daniel Struck <struck(dot)d(at)retrovirology(dot)lu> wrote:
> 
> The problem is, I don't have a password available in php.
> The users are authenticated with x509 certificats and a private key, not a password. The private key is stored on a smartcard and never leaves it, the smartcard itself handles the authentication with apache.
> 
> Problem now is, I want to authenticate the user with postgresql, to be able to log what the user is doing in postgresql itself.
> But I don't have a password to authenticate the user.
> Thought about using a Kerberos ticket in postgresql, but don't know how to setup this.

If you trust the host the php/web server runs on you may be able to use
trust authentication. If you don't trust all of the users on that host
then you can use ident authentication, though if the db server and php/web
server aren't the same host using identd may slow things down too much.

In response to

Responses

pgsql-php by date

Next:From: Bastiaan WakkieDate: 2003-11-11 20:08:14
Subject: Re: Convert literature string via Regular Expressions
Previous:From: Daniel StruckDate: 2003-11-11 13:54:25
Subject: Re: client authentication towards postgresql in php?

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group