Quick Links

set_user 3.0 allowlist does not works, have ot use old whitelist parameter

From:	"James Pang (chaolpan)" <chaolpan(at)cisco(dot)com>
To:	"pgsql-admin(at)lists(dot)postgresql(dot)org" <pgsql-admin(at)lists(dot)postgresql(dot)org>
Subject:	set_user 3.0 allowlist does not works, have ot use old whitelist parameter
Date:	2021-12-13 12:12:17
Message-ID:	PH0PR11MB5191BC794417FDD23FD13A2ED6749@PH0PR11MB5191.namprd11.prod.outlook.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-admin

It's set_user 3.0, we want to leverage set_user to escalate to superuser for individual DBAs IDs. , frollow the readme , shoulde use set_user.superuser_allowlist, but per my test, set_user.superuser_whitelist doest not work, still need to use old version's parameter
set_user.superuser_whitelist.

set_user.superuser_whitelist = '+dbadmin'
#set_user.superuser_allowlist = '+dbadmin'
set_user.block_log_statement=on
set_user.nosuperuser_target_whitelist = ''
#set_user.nosuperuser_target_allowlist = ''

Regards,

James

Browse pgsql-admin by date

	From	Date	Subject
Next Message	Joe Bloggs	2021-12-13 12:12:53	MacOS Application Security
Previous Message	Joao COSTA	2021-12-13 11:57:07	RE: PostgreSQL - CVE-2021-44228 - dependency on Log4j ?