Home > mailing lists

Re: patch: Client certificate requirements - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: patch: Client certificate requirements
Date	November 15, 2008 23:39:17
Msg-id	13662.1226795946@sss.pgh.pa.us Whole thread Raw
In response to	Re: patch: Client certificate requirements ("Alex Hunsaker" <badalex@gmail.com>)
Responses	Re: patch: Client certificate requirements ("Alex Hunsaker" <badalex@gmail.com>)
List	pgsql-hackers

Tree view

"Alex Hunsaker" <badalex@gmail.com> writes:
> Err that really should be ereport(FATAL,

I don't think that's a particularly user-friendly design.

The behavior I'd expect to see is

1. Root cert file not there: issue existing LOG message.  Maybe the user is
expecting client cert verification, and maybe he isn't, but it is a good
idea to put out the LOG message just to make sure he knows what will
happen.

2. Root cert file present but we fail to load it: FATAL is probably okay
here, but not with that hint message.
        regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 15 November 2008, 23:26:41
Subject: Re: "ORDER BY" clause prevents "UPDATE WHERE CURRENT OF"

From: "Alex Hunsaker"
Date: 16 November 2008, 01:34:27
Subject: Re: patch: Client certificate requirements

Re: patch: Client certificate requirements - Mailing list pgsql-hackers

Previous

Next