Quick Links

Re: [PoC] Federated Authn/z with OAUTHBEARER

From:	Jacob Champion <jchampion(at)timescale(dot)com>
To:	"pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Cc:	"hlinnaka(at)iki(dot)fi" <hlinnaka(at)iki(dot)fi>, "michael(at)paquier(dot)xyz" <michael(at)paquier(dot)xyz>, "smilingsamay(at)gmail(dot)com" <smilingsamay(at)gmail(dot)com>, mahendrakar s <mahendrakarforpg(at)gmail(dot)com>, Andrey Chudnovsky <achudnovskij(at)gmail(dot)com>
Subject:	Re: [PoC] Federated Authn/z with OAUTHBEARER
Date:	2022-09-23 22:39:19
Message-ID:	CAAWbhmiWudPQk2euOQQPPa=o14zCN9U_qLwU1pShKO4A-F9yeA@mail.gmail.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

On Fri, Mar 25, 2022 at 5:00 PM Jacob Champion <pchampion(at)vmware(dot)com> wrote:
> v4 rebases over the latest version of the pluggable auth patchset
> (included as 0001-4). Note that there's a recent conflict as
> of d4781d887; use an older commit as the base (or wait for the other
> thread to be updated).

Here's a newly rebased v5. (They're all zipped now, which I probably
should have done a while back, sorry.)

- As before, 0001-4 are the pluggable auth set; they've now diverged
from the official version over on the other thread [1].
- I'm not sure that 0005 is still completely coherent after the
rebase, given the recent changes to jsonapi.c. But for now, the tests
are green, and that should be enough to keep the conversation going.
- 0008 will hopefully be obsoleted when the SYSTEM_USER proposal [2] lands.

Thanks,
--Jacob

[1] https://www.postgresql.org/message-id/CAJxrbyxgFzfqby%2BVRCkeAhJnwVZE50%2BZLPx0JT2TDg9LbZtkCg%40mail.gmail.com
[2] https://www.postgresql.org/message-id/flat/7e692b8c-0b11-45db-1cad-3afc5b57409f(at)amazon(dot)com

Attachment	Content-Type	Size
v5-0004-Add-support-for-map-and-custom-auth-options.patch.gz	application/gzip	3.7 KB
v5-0001-Add-support-for-custom-authentication-methods.patch.gz	application/gzip	3.9 KB
v5-0002-Add-sample-extension-to-test-custom-auth-provider.patch.gz	application/gzip	1.6 KB
v5-0005-common-jsonapi-support-FRONTEND-clients.patch.gz	application/gzip	6.3 KB
v5-0003-Add-tests-for-test_auth_provider-extension.patch.gz	application/gzip	2.2 KB
v5-0006-libpq-add-OAUTHBEARER-SASL-mechanism.patch.gz	application/gzip	10.4 KB
v5-0009-Add-pytest-suite-for-OAuth.patch.gz	application/gzip	28.5 KB
v5-0010-contrib-oauth-switch-to-pluggable-auth-API.patch.gz	application/gzip	5.3 KB
v5-0008-Add-a-very-simple-authn_id-extension.patch.gz	application/gzip	1.2 KB
v5-0007-backend-add-OAUTHBEARER-SASL-mechanism.patch.gz	application/gzip	11.4 KB

In response to

Re: [PoC] Federated Authn/z with OAUTHBEARER at 2022-03-26 00:00:22 from Jacob Champion

Responses

Re: [PoC] Federated Authn/z with OAUTHBEARER at 2022-09-27 01:39:28 from Andrey Chudnovsky
Re: [PoC] Federated Authn/z with OAUTHBEARER at 2023-04-27 17:35:20 from Jacob Champion

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Thomas Munro	2022-09-24 04:14:20	Re: Use pg_pwritev_with_retry() instead of write() in dir_open_for_write() to avoid partial writes?
Previous Message	Justin Pryzby	2022-09-23 22:30:57	Re: Fix typos in code comments