| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
pam_message array contains exactly one PAM_PROMPT_ECHO_OFF message.
Instead, deal with however many messages there are, and don't throw error
for PAM_ERROR_MSG and PAM_TEXT_INFO messages. This logic is borrowed from
openssh 5.2p1, which hopefully has seen more real-world PAM usage than we
have. Per bug #5121 from Ryan Douglas, which turned out to be caused by
the conv_proc being called with zero messages. Apparently that is normal
behavior given the combination of Linux pam_krb5 with MS Active Directory
as the domain controller.
Patch all the way back, since this code has been essentially untouched
since 7.4. (Surprising we've not heard complaints before.)
|
| |
|
|
|
| |
to make it more obvious that it's a PostgreSQL internal limit, not something
that comes from system header files.
|
| |
|
|
|
|
|
|
| |
and SSPI athentication methods. While the old 2000 byte limit was more than
enough for Unix Kerberos implementations, tickets issued by Windows Domain
Controllers can be much larger.
Ian Turner
|
| |
|
|
| |
we already do it for PAM.
|
| |
|
|
| |
provided by Andrew.
|
| |
|
|
|
| |
this, the username was in practice never matched against the kerberos principal
used to log in.
|
| | |
|
| |
|
|
|
| |
consistent, translate where intended, const-ify declarations.
Resolves a gripe from Alvaro as well as some stuff I didn't like.
|
| |
|
|
|
|
|
| |
their GUCs.
In passing, noted that the pg_hba options for krb5 authentication weren't
listed at all - so add this.
|
| |
|
|
|
|
| |
to pass the full username@realm string to the authentication instead of
just the username. This makes it possible to use pg_ident.conf to authenticate
users from multiple realms as different database users.
|
| |
|
|
|
| |
authentication options to be set in pg_hba.conf on a per-line basis, to
override the defaults set in postgresql.conf.
|
| | |
|
| |
|
|
|
|
| |
db_user_namespace is enabled.
Also document this limitation.
|
| |
|
|
| |
database (only for SSL connections, obviously).
|
| |
|
|
| |
instead of just relying on the root certificate file to be present.
|
| |
|
|
|
|
| |
getpeerucred() function.
Author: Garick Hamlin <ghamlin@isc.upenn.edu>
|
| |
|
|
| |
This breaks compatibility with pre-7.2 versions.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* make LDAP use this instead of the hacky previous method to specify
the DN to bind as
* make all auth options behave the same when they are not compiled
into the server
* rename "ident maps" to "user name maps", and support them for all
auth methods that provide an external username
This makes a backwards incompatible change in the format of pg_hba.conf
for the ident, PAM and LDAP authentication methods.
|
| |
|
|
|
|
|
|
|
| |
each connection. This makes it possible to catch errors in the pg_hba
file when it's being reloaded, instead of silently reloading a broken
file and failing only when a user tries to connect.
This patch also makes the "sameuser" argument to ident authentication
optional.
|
| |
|
|
|
|
| |
method is grouped together in a reasonably similar way, keeping the "global
shared functions" together in their own section as well. Makes it a lot easier
to find your way around the code.
|
| |
|
|
| |
routines, leaving hba.c to deal only with processing the HBA specific files.
|
| |
|
|
| |
Per report from César Miguel Oliveira Alves.
|
| |
|
|
|
|
| |
issue a helpful error message instead of sending unparsable garbage.
(It is clearly a design error that this doesn't work, but fixing it
is not worth the trouble at this point.) Per discussion.
|
| |
|
|
|
| |
soon. I suspect this explains bug #3902, though I'm still not able to
reproduce that.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
to validate the realm of the connecting user. By default
it's empty meaning no verification, which is the way
Kerberos authentication has traditionally worked in
PostgreSQL.
|
| |
|
|
| |
Kris Jurka
|
| |
|
|
|
| |
by dynamically loading the function that's missing from the MingW
headers and library.
|
| |
|
|
|
|
|
| |
against a Unix server, and Windows-specific server-side authentication
using SSPI "negotiate" method (Kerberos or NTLM).
Only builds properly with MSVC for now.
|
| |
|
|
| |
when built on a 64-bit machine. Per buildfarm results extracted by Stefan.
|
| |
|
|
| |
enabled, because the only Kerberos library supported always contains it.
|
| |
|
|
|
|
| |
such as OpenBSD (possibly all Heimdal).
Stefan Kaltenbrunner
|
| |
|
|
|
|
| |
* use elog not ereport for debug
* fix debug levels for some output
* properly check for memory allocation errors in a couple of missed places
|
| |
|
|
|
|
| |
Documentation still being written, will be committed later.
Henry B. Hotz and Magnus Hagander
|
| |
|
|
|
|
| |
authentication checks in the backend.
Gavin Sherry
|
| |
|
|
| |
back-stamped for this.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
manually release the LDAP handle via ldap_unbind(). This isn't a
significant problem in practice because an error eventually results
in exiting the process, but we can cleanup correctly without too
much pain.
In passing, fix an error in snprintf() usage: the "size" parameter
to snprintf() is the size of the destination buffer, including space
for the NUL terminator. Also, depending on the value of NAMEDATALEN,
the old coding could have allowed for a buffer overflow.
|
| | |
|
| | |
|
| |
|
|
| |
Euler Taveira de Oliveira
|
| | |
|
| | |
|
| |
|
|
|
| |
entirely on older Windows platforms without the needed library function.
Magnus Hagander
|
| | |
|
| |
|
|
|
| |
have no other gods before c.h'. Also remove some demonstrably redundant
#include lines, mostly of <errno.h> which was added to c.h years ago.
|
| |
|
|
|
|
|
| |
Strip unused include files out unused include files, and add needed
includes to C files.
The next step is to remove unused include files in C files.
|
