| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> |
| Cc: | Peter Eisentraut <peter(at)eisentraut(dot)org>, Antonin Houska <ah(at)cybertec(dot)at>, PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: [PoC] Federated Authn/z with OAUTHBEARER |
| Date: | 2025-01-27 22:49:50 |
| Message-ID: | 55EA9E76-9866-486C-9C7F-C5E8B071C50E@yesql.se |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> On 21 Jan 2025, at 17:46, Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> wrote:
> Done that way in v43.
I've spent some time staring at, and testing, 0001, 0002 and 0003 with the
intent of getting them in to pave the way for the end goal of getting 0004 in.
In general I would say they are ready, I only have a small nitpick on 0002:
+ conn->allowed_sasl_mechs[0] = &pg_scram_mech;
I'm not a huge fan of this hardcoding in fill_allowed_sasl_mechs(). It's true
that we only have one as of this patch, but we might as well plan a little for
the future maintainability. I took a quick stab in the attached.
On top of that I just re-arranged a comment to, IMHO, better match the style in
the rest of the file.
Unless there are objections I aim at committing these patches reasonably soon
to lower the barrier for getting OAuth support committed.
--
Daniel Gustafsson
| Attachment | Content-Type | Size |
|---|---|---|
| v43review.diff.txt | text/plain | 2.9 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Sami Imseih | 2025-01-27 23:00:53 | Re: Sample rate added to pg_stat_statements |
| Previous Message | Peter Smith | 2025-01-27 22:27:35 | Re: Enhance 'pg_createsubscriber' to retrieve databases automatically when no database is provided. |