From: | mha(at)postgresql(dot)org (Magnus Hagander) |
---|---|
To: | pgsql-committers(at)postgresql(dot)org |
Subject: | pgsql: Allow LDAP authentication to operate in search+bind mode, meaning |
Date: | 2009-12-12 21:35:21 |
Message-ID: | 20091212213521.4CCA7753FB7@cvs.postgresql.org |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-committers |
Log Message:
-----------
Allow LDAP authentication to operate in search+bind mode, meaning it
does a search for the user in the directory first, and then binds with
the DN found for this user.
This allows for LDAP logins in scenarios where the DN of the user cannot
be determined simply by prefix and suffix, such as the case where different
users are located in different containers.
The old way of authentication can be significantly faster, so it's kept
as an option.
Robert Fleming and Magnus Hagander
Modified Files:
--------------
pgsql/doc/src/sgml:
client-auth.sgml (r1.124 -> r1.125)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/client-auth.sgml?r1=1.124&r2=1.125)
pgsql/src/backend/libpq:
auth.c (r1.187 -> r1.188)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/backend/libpq/auth.c?r1=1.187&r2=1.188)
hba.c (r1.192 -> r1.193)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/backend/libpq/hba.c?r1=1.192&r2=1.193)
pgsql/src/include/libpq:
hba.h (r1.59 -> r1.60)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/include/libpq/hba.h?r1=1.59&r2=1.60)
From | Date | Subject | |
---|---|---|---|
Next Message | User Bmomjian | 2009-12-13 01:21:35 | pg-migrator - pg_migrator: Add support for migration to PostgreSQL 8.5 |
Previous Message | Tom Lane | 2009-12-12 19:25:10 | pgsql: Fix integer-to-bit-string conversions to handle the first |