Home > mailing lists

Re: Proposal: Save user's original authenticated identity for logging - Mailing list pgsql-hackers

From	Jacob Champion
Subject	Re: Proposal: Save user's original authenticated identity for logging
Date	February 2, 2021 02:08:39
Msg-id	12d26c8e9e3c9526a7b9e191513a8d948f31bbbe.camel@vmware.com Whole thread Raw
In response to	Re: Proposal: Save user's original authenticated identity for logging (Stephen Frost <sfrost@snowman.net>)
Responses	Re: Proposal: Save user's original authenticated identity for logging
List	pgsql-hackers

Tree view

On Mon, 2021-02-01 at 18:01 -0500, Stephen Frost wrote:
> Ok..  but what's 'go' mean here?  We already have views and such for GSS
> and SSL, is the idea to add another view for LDAP and add in columns
> that are returned by pg_stat_get_activity() which are then pulled out by
> that view?  Or did you have something else in mind?

Magnus suggested a function like pg_get_authenticated_identity(), which
is what I was thinking of when I said that. I'm not too interested in
an LDAP-specific view, and I don't think anyone so far has asked for
that.

My goal is to get this one single point of reference, for all of the
auth backends. The LDAP mapping conversation is separate.

--Jacob

pgsql-hackers by date:

From: Stephen Frost
Date: 02 February 2021, 02:01:46
Subject: Re: Proposal: Save user's original authenticated identity for logging

From: Jeff Janes
Date: 02 February 2021, 02:09:16
Subject: memory leak in auto_explain

Re: Proposal: Save user's original authenticated identity for logging - Mailing list pgsql-hackers

Previous

Next