[#1011327] password less config

View Trackers | Feature Requests | Download .csv | Monitor

Date:
2013-04-10 14:40
Priority:
3
State:
Open
Submitted by:
Farid Sarwari (fsarwari)
Assigned to:
Nobody (None)
Category:
None
Group:
None
Summary:
password less config

Detailed description
Hello, first of all thank you for this great project.
Would it be possible to allow password less configuration in pgbouncer and just pass authentication to the postgres?

I probably don't understand this well enough. But to me it seems that If I have don't have any usernames configured in the "[databases] section, then any users that exist in the auth_file and have an account in the database should be able to login by just authenticating against postgres. Why first authenticate with pgbouncer and then postgres?

Another problem this may causes if you use LDAP for postgres authentication and you have rules in LDAP that will disable an account after multiple failed login attempts. If pgbouncer first authenticates against the auth_file, and only passes on the authentication to postgres after success. Postgres/LDAP would never see failed attempts. I haven't looked at the source code, so I don't really know if it actually works like this.

Thank you.

Followup

No Followups Have Been Posted

Attached Files:

Changes:

No Changes Have Been Made to This Item

Powered By FusionForge