Thread: Re: [PATCHES] LDAP auth

Re: [PATCHES] LDAP auth

From
"Magnus Hagander"
Date:
> >>If your patch is accepted and a dependency on OpenLDAP is
> introduced,
> >>my patch will provide an additional gain with no additional cost.
> >>
> >>
> >
> >Out of curiosity what would an SQL database want with ldap anyways?
> >
> >
> >
> Single Sign On is the obvious answer.

LDAP doesn't actually provide Single Sign On. It does provide Single
Login with Single Password. But you still have to type in your password
again for each login.

Kerberos provides single sign-on, where you just log in once and you're
done - no more password entry.


> I find it hard to imagine LDAP being sensibly use for any
> other postgres purpose than authentication, despite recent
> flights of fancy on the list about storing large slabs of
> config data there.

Well, that does seem to be the flavour of the month though.. ;-)

//Magnus