Home > mailing lists

Re: Streaming replication as a separate permissions - Mailing list pgsql-hackers

From	Stephen Frost
Subject	Re: Streaming replication as a separate permissions
Date	December 24, 2010 03:46:38
Msg-id	20101224044630.GD4933@tamriel.snowman.net Whole thread Raw
In response to	Re: Streaming replication as a separate permissions (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: Streaming replication as a separate permissions (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

* Robert Haas (robertmhaas@gmail.com) wrote:
> I think I agree with Florian about the confusing-ness of the proposed
> semantics.  Aren't you saying you want NOLOGIN mean "not allowed to
> log in for the purposes of issuing SQL commands, but allowed to log in
> for replication"?  Uggh.

I like the general idea of a replication-only "role" or "login".  Maybe
implementing that as a role w/ all the things that come along with it
being a role isn't right, but we don't want to have to reinvent all the
supported auth mechanisms (and please don't propose limiting the auth
options for the replication login!).  Is there a way we can leverage the
auth mechanisms, etc, while forcing the 'replication role' to only be
able to do what a 'replication role' should do?
Thanks,
    Stephen

pgsql-hackers by date:

From: Robert Haas
Date: 24 December 2010, 03:35:34
Subject: pg_dump -X

From: KaiGai Kohei
Date: 24 December 2010, 06:26:58
Subject: Re: sepgsql contrib module

Re: Streaming replication as a separate permissions - Mailing list pgsql-hackers

Previous

Next