Thread: RADIUS secret in file
Attached is the "last step" of the RADIUS authenticaiton as I promised Stephen - which allows the reading of the RAIDUS secret from a file instead of hardcoded in pg_hba.conf. One reason being you don't want the secret in your config file that may be in a shared repository or such. IIRC Stephen had some other reason, but I'll leave it to him to fill that in :-) -- Magnus Hagander Me: http://www.hagander.net/ Work: http://www.redpill-linpro.com/
Attachment
Magnus Hagander wrote: > Attached is the "last step" of the RADIUS authenticaiton as I promised > Stephen - which allows the reading of the RAIDUS secret from a file > instead of hardcoded in pg_hba.conf. One reason being you don't want > the secret in your config file that may be in a shared repository or > such. IIRC Stephen had some other reason, but I'll leave it to him to > fill that in :-) Do we really need this in addition to the existing pg_hba.conf @-include functionality? Stefan
* Magnus Hagander (magnus@hagander.net) wrote: > IIRC Stephen had some other reason, but I'll leave it to him to > fill that in :-) I was really looking for multi-server support as well, and support for a config-file format that's commonly used for RADIUS. I'll take a whack at doing that this evening. Thanks, Stephen