> > IIUC the vast majority of clients already support SCRAM auth. So the > > vast majority of PG users can take advantage of the additional security. > > I think the only massive-adoption exception is JDBC, and apparently they > > already have working patches for SCRAM. > > We have more than patches this is already in the driver. > > What do you mean by "massive-adoption exception"
I meant an exception to the common situation that SCRAM-SHA-256 is supported and shipped in stable releases of each driver. The wiki here still says it's unsupported on JDBC: https://wiki.postgresql.org/wiki/List_of_drivers For once I'm happy to learn that the wiki is outdated :-)