Hello,
here's a one-line patch to close a handle leak in pg_SSPI_recvauth().
According to the docs, the token retrieved with QuerySecurityContextToken() must be closed.
-- Christian