From: | "Kevin Crenshaw" <kcrenshaw(at)viscient(dot)com> |
---|---|
To: | "'Roland Giesler'" <roland(at)giesler(dot)za(dot)net>, <brew(at)theMode(dot)com>, <pgsql-novice(at)postgresql(dot)org> |
Subject: | Re: Best way to manage users |
Date: | 2006-01-04 19:40:46 |
Message-ID: | 20060104194052.9C53F9DC860@postgresql.org |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-novice |
Roland,
I wanted to reply to your post separately. I toyed with using pg_user to
store user information, but it did not work. I tried to use pg_user to
store user acct info and then use a 'user_detail' table to store additional
details but I got an error stating that pg_user is not a table (this
occurred when I tried to use the 'usesysid' column as a foreign key in my
user_detail table).
I think that the best solution - given the discussion thus far - is to have
a separate pg user that the web app will use to access the database, and
create a 'users' table in the db to store the web app usernames and
passwords etc...
Hth,
kevin
-----Original Message-----
From: Roland Giesler [mailto:roland(at)giesler(dot)za(dot)net]
Sent: Wednesday, January 04, 2006 12:44 PM
To: 'Kevin Crenshaw'; brew(at)theMode(dot)com; pgsql-novice(at)postgresql(dot)org
Subject: RE: [NOVICE] Best way to manage users
Kevin Crenshaw wrote:
> Thanks for the replies. I appreciate the advice. However, I
> think that a better way to pose my question is to ask - what
> are the pros and cons of using Postgres to handle user
> authentication for my web app?
Maybe to add to that question: Is there a way to directly authenticate a
user as a database user when using a web app? In .net, this is handeled by
a cobination of the OS (active directory - AD), the DB (SQL Server) which
can authenticate against AD, and the browser. However, how can pg get or
request the authentication from your webbrowser? Unless there is a pgsql
function that allows login as a different user from a webapp from the
webapp, I would think it's not possible to actually do this the way a
statefull app does it (under windows for example)
Some comments on this would be great, as I have a very similar requirement
and was also toying with the idea of using the pg users, instead of creating
my own tables and user authentication infrastructure.
Thanks
Roland Giesler
From | Date | Subject | |
---|---|---|---|
Next Message | Sean Davis | 2006-01-04 19:53:43 | Re: Best way to manage users |
Previous Message | Kevin Crenshaw | 2006-01-04 19:26:46 | Re: Best way to manage users |