| From: | Martijn van Oosterhout <kleptog(at)svana(dot)org> |
|---|---|
| To: | Magnus Hagander <mha(at)sollentuna(dot)net> |
| Cc: | Stephen Frost <sfrost(at)snowman(dot)net>, "Henry B(dot) Hotz" <hotz(at)jpl(dot)nasa(dot)gov>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Design Considerations for New Authentication Methods |
| Date: | 2006-11-02 21:57:47 |
| Message-ID: | 20061102215747.GF2516@svana.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Thu, Nov 02, 2006 at 08:58:37PM +0100, Magnus Hagander wrote:
> > I don't think you can tie the SSL certificate to a specific
> > user though... I certainly can't recall any way to do that
> > today in PG.
>
> You can't. It's been talked about, but never done.
Oops, sorry. You can verify the user has a valid certificate, but you
can't use it for authentication. AFAIK it just needs to be coded
(certainly the code to get the relevent fields from the certificate is
there).
Have a nice day,
--
Martijn van Oosterhout <kleptog(at)svana(dot)org> http://svana.org/kleptog/
> From each according to his ability. To each according to his ability to litigate.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | mark | 2006-11-02 22:20:22 | Re: Design Considerations for New Authentication Methods |
| Previous Message | Andrew Sullivan | 2006-11-02 21:52:16 | Re: Design Considerations for New Authentication Methods |