| From: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> |
|---|---|
| To: | Hannu Krosing <hannuk(at)google(dot)com> |
| Cc: | Jelte Fennema-Nio <postgres(at)jeltef(dot)nl>, Ajit Awekar <ajitpostgres(at)gmail(dot)com>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>, Dave Cramer <davecramer(at)gmail(dot)com>, Heikki Linnakangas <hlinnaka(at)iki(dot)fi> |
| Subject: | Re: Periodic authorization expiration checks using GoAway message |
| Date: | 2025-12-10 20:02:23 |
| Message-ID: | CAOYmi+kpSN9MPxP_XeRHVCXP4FcN+n+5hrCdKD9qM9KXSGKhSw@mail.gmail.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
(To call it out explicitly: I work with Ajit, and I asked him to take
a look at GoAway, and I'm particularly interested in the
"reauthenticate or else" case. Let me know if any of that is
problematic -- or if anyone's worried that it will become so -- so I
can course-correct sooner rather than later.)
On Fri, Nov 28, 2025 at 9:52 AM Hannu Krosing <hannuk(at)google(dot)com> wrote:
> Also have not looked at the patch, but we should also make sure that
> there is not just be GoAway, but also a way to re-authenticate or
> "extend lease" or whatever the terminology is for a specific
> authentication method.
I agree. I like the idea of the server coordinating (and then
enforcing) connection lifetime and cross-connection handoffs with the
client, but like Jelte said, the current GoAway proposal isn't really
built for that.
Is there enough interest in the more general problem for us to try
combining the use cases? Or should they remain separate?
Thanks,
--Jacob
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Stéphane Tachoires | 2025-12-10 20:04:11 | Re: Add SPLIT PARTITION/MERGE PARTITIONS commands |
| Previous Message | Victor Yegorov | 2025-12-10 19:41:13 | Re: Returning nbtree posting list TIDs in DESC order during backwards scans |