| From: | Melanie Plageman <melanieplageman(at)gmail(dot)com> |
|---|---|
| To: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com> |
| Cc: | Bertrand Drouvot <bertranddrouvot(dot)pg(at)gmail(dot)com>, Andres Freund <andres(at)anarazel(dot)de>, Fujii Masao <masao(dot)fujii(at)oss(dot)nttdata(dot)com>, Guillaume Lelarge <guillaume(at)lelarge(dot)info>, Pg Hackers <pgsql-hackers(at)postgresql(dot)org>, Daniel Gustafsson <daniel(at)yesql(dot)se>, andrey(dot)chudnovskiy(at)microsoft(dot)com, Jelte Fennema-Nio <postgres(at)jeltef(dot)nl> |
| Subject: | Re: Log connection establishment timings |
| Date: | 2025-03-07 22:17:30 |
| Message-ID: | CAAKRu_a1Uz2WEGq3MgV=oHsuEr+dAGhqLDTC+u6YXPkh_1cJaA@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Fri, Mar 7, 2025 at 4:53 PM Jacob Champion
<jacob(dot)champion(at)enterprisedb(dot)com> wrote:
>
> If I add a hypothetical auth method in the future that authenticates,
> and then farms the authorization decision out to some slow-moving
> network machinery, would "authenticated" retroactively become a stage
> then? (OAuth almost does this today... but it's not quite separated
> enough for me to claim it as an example.) If we call them "options"
> instead, I guess we don't have to worry about shifting internals.
Yea, I could also see people wanting to add other messages in the
future that don't fit perfectly into the "stage" category. Keeping
things more general probably reduces that potential future friction
too.
In v13 that I shared here [1] I refer to them as "options" and, in
some contexts where that doesn't make sense, "aspects" of connection
establishment and backend setup. I also changed the tenses of the
other options from "received", "authenticated", and "authorized" to
"receipt", "authentication", "authorization". I think that makes them
sound less like stages and more like a type of message.
> > That also makes me wonder if the
> > "authenticated" log_connections option should actually be called
> > "auth_id" or something similar.
>
> To bikeshed the specific suggestion of "auth_id": both Peter E and
> Robert have previously expressed concern that my internal name choice
> of "authn_id" was too opaque, and that maybe I should have just
> expanded the terms. Also, I think if one option is called
> "authorized", the other half should probably be called "authenticated"
> if for no other reason than symmetry. It also matches the prefix used
> in the logs, for English builds.
Yea, "auth_id" is too ambiguous for a GUC option. I went with
"authorization" because it sounds a bit less like a stage while also
being a recognizable word. It achieves symmetry -- though it doesn't
match the prefix used in the logs.
- Melanie
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Daniel Verite | 2025-03-07 22:31:12 | Re: Add Pipelining support in psql |
| Previous Message | Melanie Plageman | 2025-03-07 22:10:44 | Re: Log connection establishment timings |