| From: | Jacob Champion <jchampion(at)postgresql(dot)org> |
|---|---|
| To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
| Subject: | pgsql: oauth: Classify oauth_client_secret as a password |
| Date: | 2025-04-29 20:23:24 |
| Message-ID: | E1u9rUC-000D6P-0V@gemulon.postgresql.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
oauth: Classify oauth_client_secret as a password
Tell UIs to hide the value of oauth_client_secret, like the other
passwords. Due to the previous commit, this does not affect postgres_fdw
and dblink, but add a comment to try to warn others of the hazard in the
future.
Reported-by: Noah Misch <noah(at)leadboat(dot)com>
Reviewed-by: Noah Misch <noah(at)leadboat(dot)com>
Discussion: https://postgr.es/m/20250415191435.55.nmisch%40google.com
Branch
------
master
Details
-------
https://git.postgresql.org/pg/commitdiff/e974f1c2164bc677d55f98edaf99f80c0b6b89d9
Modified Files
--------------
src/interfaces/libpq/fe-connect.c | 8 +++++++-
1 file changed, 7 insertions(+), 1 deletion(-)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2025-04-29 21:27:58 | pgsql: Give up on running with NetBSD/OpenBSD's default semaphore setti |
| Previous Message | Peter Eisentraut | 2025-04-29 17:19:10 | pgsql: Fix whitespace typo in string |