| From: | Khushboo Vashi <khushboo(dot)vashi(at)enterprisedb(dot)com> |
|---|---|
| To: | pgadmin-hackers <pgadmin-hackers(at)postgresql(dot)org> |
| Subject: | [pgAdmin4][Patch]- Feature #7012 - disable master password requirement when using alternative auth source |
| Date: | 2022-04-11 06:29:54 |
| Message-ID: | CAFOhELcrv+Rm0bBmXt1-c8NOpsaxinKi=QQTn491dbcUo2xjZA@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgadmin-hackers |
Hi,
Please find the attached patch to implement the feature #7012 - Disable
master password requirement when using alternative auth source
When pgAdmin stores a connection password, it encrypts it using a key that
is formed either from the master password, or from the pgAdmin login
password for the user. In the case of auth methods such as OAuth, Kerberos
or Webserver, pgAdmin doesn't have access to anything long-lived to form
the encryption key from, hence it uses the master password. And if the
master is disabled, there is no way to store the connection password.
To resolve this, we have added an option to config.py (which defaults to
None) for an alternate encryption key. pgAdmin would use this if a) the
master password is disabled AND b) there is no suitable key/password
available from the auth module for the user. If the option is set to None,
pgAdmin works as it does now.
Thanks,
Khushboo
| Attachment | Content-Type | Size |
|---|---|---|
| RM_7012.patch | application/octet-stream | 7.2 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Akshay Joshi | 2022-04-11 08:19:35 | pgAdmin 4 commit: Disable the master password requirement when using al |
| Previous Message | Khushboo Vashi | 2022-04-11 04:12:18 | [pgAdmin4][Patch] - RM #7179 - PostgreSQL deployment on EDB BigAnimal |