Home > mailing lists

Make PGOAUTHCAFILE in libpq-oauth work out of debug mode - Mailing list pgsql-hackers

From	Jonathan Gonzalez V.
Subject	Make PGOAUTHCAFILE in libpq-oauth work out of debug mode
Date	October 29 22:19:49
Msg-id	16a91d02795cb991963326a902afa764e4d721db.camel@gmail.com Whole thread Raw
List	pgsql-hackers

Tree view

Hi,

While working on a validator for keycloak[1] with libpq-oauth I find
out that to allow a self-signed certificated I had to set the CA on the
client but for this was required to also set the PGOAUTHDEBUG=UNSAFE
which generated a lot of information on the client side that I didn't
need for my testing and work.

This patch basically remove the need of setting the PGOAUTHDEBUG=UNSAFE
to be able to use PGOAUTHCAFILE.

I'm not sure if where I put the documentation is the right place, I
would like to have some opinions on that matter too.


[1] https://github.com/cloudnative-pg/postgres-keycloak-oauth-validator

--
Jonathan Gonzalez V. <jonathan.abdiel@gmail.com>

Attachment

v1-0001-libpq-oauth-allow-changing-the-CA-when-not-in-deb.patch

pgsql-hackers by date:

From: Robert Haas
Date: 29 October, 21:55:21
Subject: Re: apply_scanjoin_target_to_paths and partitionwise join

From: Masahiko Sawada
Date: 29 October, 22:26:19
Subject: Re: POC: enable logical decoding when wal_level = 'replica' without a server restart

Make PGOAUTHCAFILE in libpq-oauth work out of debug mode - Mailing list pgsql-hackers

Attachment

Previous

Next