Greetings,
* Peter Eisentraut (peter.eisentraut@enterprisedb.com) wrote:
> On 02.03.22 21:49, samay sharma wrote:
> >I think we are discussing two topics in this thread which in my opinion
> >are orthogonal.
> >
> >(a) Should we make authentication methods pluggable by exposing these
> >hooks? - These will allow users to add plugins of their own to support
> >whatever auth method they like. One immediate use case (and what prompted
> >me to start looking at this) is Azure Active Directory integration which
> >is a common request from Azure customers. We could also, over time, move
> >some of our existing auth methods into extensions if we don’t want to
> >maintain them in core.
>
> I don't think people are necessarily opposed to that.
I'm not thrilled with it, at least. It's not clear that just backend
hooks would be enough either- certainly a number of our existing
mechanisms require support in libpq and those are generally the ones
that are more secure too (GSSAPI, Certs), so how would that work with
something that's 'pluggable'? Are we going to have libpq loading in
libraries too?
> At the moment, it is not possible to judge whether the hook interface you
> have chosen is appropriate.
Agreed.
> I suggest you actually implement the Azure provider, then make the hook
> interface, and then show us both and we can see what to do with it.
Better- implement a standard that's also supported by Azure and not
something proprietary that can't be evaluated or which hasn't been
reviewed by security experts.
Thanks,
Stephen