Stephen Frost <sfrost(at)snowman(dot)net> writes:
>> Alvaro Herrera <alvherre(at)2ndquadrant(dot)com> writes:
>
> How about something like this?
>
> * If GSSAPI Encryption is enabled, then call pg_GSS_have_cred_cache()
> * which will return true if we can acquire credentials (and give us a
> * handle to use in conn->gcred), and then send a packet to the server
> * asking for GSSAPI Encryption (and skip past SSL negotiation and
> * regular startup below).
This looks correct to me (and uses plenty of parentheticals, so it feels
in keeping with something I'd write) :)
Thanks,
--Robbie