LDAP: Auto user creation and role membership

From: Daniel Scott <djscott(at)mit(dot)edu>
To: pgsql-general(at)postgresql(dot)org
Subject: LDAP: Auto user creation and role membership
Date: 2010-05-05 20:49:43
Message-ID: s2j6835906b1005051349q7e8b9fcevcb882816ea0c3c04@mail.gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

Hi,

I have Postgres 8.4.3 running with gss authentication against Fedora's
FreeIPA (Integrated Kerberos, LDAP and some other services).

I would like to auto-create users and auto-map postgres roles with
users and groups within the FreeIPA LDAP directory. Can anyone tell me
if this is available in Postgres? Looking through the docs, it appears
that it is not, and I have to manage user creation and role membership
manually.

I found this post from 5 years ago:

http://www.mail-archive.com/pgsql-hackers(at)postgresql(dot)org/msg58156.html

But I haven't found anything mentioning this functionality since.

Is anyone else attempting to do this? I could probably write a script
or something to auto create postgres users from the LDAP directory
(and remove users who have been deleted from LDAP) and then
synchronise the roles with LDAP groups, but I don't want to repeat
this work if someone's already done it.

I'd also appreciate any hints or suggestions for ways to do this.

Thanks,

Dan

Responses

Browse pgsql-general by date

  From Date Subject
Next Message sunpeng 2010-05-05 20:50:43 when to update pg_statistic relation?
Previous Message Nikola 2010-05-05 20:30:38 Re: pg_class has 3615 rows and 1010Mb in table size