| From: | Andres Freund <andres(at)anarazel(dot)de> |
|---|---|
| To: | Jacob Champion <pchampion(at)vmware(dot)com> |
| Cc: | "rjuju123(at)gmail(dot)com" <rjuju123(at)gmail(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>, "michael(at)paquier(dot)xyz" <michael(at)paquier(dot)xyz>, "sfrost(at)snowman(dot)net" <sfrost(at)snowman(dot)net> |
| Subject: | Re: [PATCH] Expose port->authn_id to extensions and triggers |
| Date: | 2022-02-25 21:23:49 |
| Message-ID: | 20220225212349.gf76klktl4dmm5ah@alap3.anarazel.de |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 2022-02-25 20:19:24 +0000, Jacob Champion wrote:
> From 2fde60a6bc3739f1894c8c264120e4fa0f04df64 Mon Sep 17 00:00:00 2001
> From: Jacob Champion <pchampion(at)vmware(dot)com>
> Date: Mon, 14 Feb 2022 08:10:53 -0800
> Subject: [PATCH v3] Add API to retrieve authn_id from SQL
> The authn_id field in MyProcPort is currently only accessible to the
> backend itself. Add a SQL function, session_authn_id(), to expose the
> field to triggers that may want to make use of it.
Looks to me like authn_id isn't synchronized to parallel workers right now. So
the function will return the wrong thing when executed as part of a parallel
query.
I don't think we should add further functions not prefixed with pg_.
Perhaps a few tests for less trivial authn_ids could be worthwhile?
E.g. certificate DNs.
Greetings,
Andres Freund
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andres Freund | 2022-02-25 21:26:49 | Re: [PATCH] Expose port->authn_id to extensions and triggers |
| Previous Message | Chapman Flack | 2022-02-25 21:12:16 | Re: [PATCH] pg_permissions |