| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | arnaud gaboury <arnaud(dot)gaboury(at)gmail(dot)com> |
| Cc: | "pgsql-general(at)postgresql(dot)org" <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: confusion about user paring with pg_hba and pg_ident |
| Date: | 2016-10-11 14:20:37 |
| Message-ID: | 31990.1476195637@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
arnaud gaboury <arnaud(dot)gaboury(at)gmail(dot)com> writes:
> I am a little confused about some of my settings when it comes to map
> linux/psql users.
I think you're misunderstanding what the user-mapping stuff does.
It does not silently translate the username in the connection request
to something else; rather, it checks whether a user having the given
external name is allowed to log in as a particular Postgres user.
So there's nothing particularly wrong with your config files, but your
expectation about how your Linux users should log in to the database is
mistaken. dovecot needs to specify that it wants to log in as mailman,
and likewise mattermost needs to specify mmuser.
If it's not practical to make the client applications send non-default
user names, you'll need to rename the Postgres roles to match the
external user names.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Rémi Cura | 2016-10-11 16:27:12 | forcing a table (parent in inheritance) tor emain empty |
| Previous Message | Lele Gaifax | 2016-10-11 14:12:58 | Re: Create recursive view schema.name |