From: | Michael Paquier <michael(dot)paquier(at)gmail(dot)com> |
---|---|
To: | Heikki Linnakangas <hlinnaka(at)iki(dot)fi> |
Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Jeff Janes <jeff(dot)janes(at)gmail(dot)com>, Joe Conway <mail(at)joeconway(dot)com>, Robert Haas <robertmhaas(at)gmail(dot)com>, pgsql-hackers <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: scram and \password |
Date: | 2017-03-25 05:10:35 |
Message-ID: | CAB7nPqQmJ5t=rd67paE7DWxuSi0C4X=5_pnzZchH7qFkBHy==A@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
On Fri, Mar 24, 2017 at 10:12 PM, Heikki Linnakangas <hlinnaka(at)iki(dot)fi> wrote:
> On 03/24/2017 03:02 PM, Michael Paquier wrote:
>>
>> In order to close this thread, I propose to reuse the patches I sent
>> here to make scram_build_verifier() available to frontends:
>>
>> https://www.postgresql.org/message-id/CAB7nPqT4yc3u8wspYkWbG088Ndp6asMH3=Zb___Ck89CTvziYQ@mail.gmail.com
>>
>> And on top of it modify \password so as it generates a md5 verifier
>> for pre-9.6 servers and a scram one for post-10 servers by looking at
>> the backend version of the current connection. What do you think?
>
> Yep, sounds like a plan.
And attached is a set of rebased patches, with createuser and psql's
\password extended to do that.
--
Michael
Attachment | Content-Type | Size |
---|---|---|
0001-Use-base64-based-encoding-for-stored-and-server-keys.patch | text/x-patch | 9.5 KB |
0003-Move-routine-to-build-SCRAM-verifier-into-src-common.patch | text/x-patch | 9.1 KB |
0004-Extend-PQencryptPassword-with-a-hashing-method.patch | text/x-patch | 5.3 KB |
0005-Extend-psql-s-password-and-createuser-to-handle-SCRA.patch | text/x-patch | 4.4 KB |
0002-Refactor-frontend-side-random-number-generation.patch | text/x-patch | 7.8 KB |
From | Date | Subject | |
---|---|---|---|
Next Message | Amit Langote | 2017-03-25 05:17:19 | Re: Declarative partitioning optimization for large amount of partitions |
Previous Message | Amit Kapila | 2017-03-25 05:04:17 | Re: Problem in Parallel Bitmap Heap Scan? |