# PostgreSQL Client Authentication Configuration File # =================================================== # # Refer to the "Client Authentication" section in the PostgreSQL # documentation for a complete description of this file. A short # synopsis follows. # # This file controls: which hosts are allowed to connect, how clients # are authenticated, which PostgreSQL user names they can use, which # databases they can access. Records take one of these forms: # # local DATABASE USER METHOD [OPTIONS] # host DATABASE USER ADDRESS METHOD [OPTIONS] # hostssl DATABASE USER ADDRESS METHOD [OPTIONS] # hostnossl DATABASE USER ADDRESS METHOD [OPTIONS] # # (The uppercase items must be replaced by actual values.) # # The first field is the connection type: "local" is a Unix-domain # socket, "host" is either a plain or SSL-encrypted TCP/IP socket, # "hostssl" is an SSL-encrypted TCP/IP socket, and "hostnossl" is a # plain TCP/IP socket. # # DATABASE can be "all", "sameuser", "samerole", "replication", a # database name, or a comma-separated list thereof. The "all" # keyword does not match "replication". Access to replication # must be enabled in a separate record (see example below). # # USER can be "all", a user name, a group name prefixed with "+", or a # comma-separated list thereof. In both the DATABASE and USER fields # you can also write a file name prefixed with "@" to include names # from a separate file. # # ADDRESS specifies the set of hosts the record matches. It can be a # host name, or it is made up of an IP address and a CIDR mask that is # an integer (between 0 and 32 (IPv4) or 128 (IPv6) inclusive) that # specifies the number of significant bits in the mask. A host name # that starts with a dot (.) matches a suffix of the actual host name. # Alternatively, you can write an IP address and netmask in separate # columns to specify the set of hosts. Instead of a CIDR-address, you # can write "samehost" to match any of the server's own IP addresses, # or "samenet" to match any address in any subnet that the server is # directly connected to. # # METHOD can be "trust", "reject", "md5", "password", "gss", "sspi", # "krb5", "ident", "peer", "pam", "ldap", "radius" or "cert". Note that # "password" sends passwords in clear text; "md5" is preferred since # it sends encrypted passwords. # # OPTIONS are a set of options for the authentication in the format # NAME=VALUE. The available options depend on the different # authentication methods -- refer to the "Client Authentication" # section in the documentation for a list of which options are # available for which authentication methods. # # Database and user names containing spaces, commas, quotes and other # special characters must be quoted. Quoting one of the keywords # "all", "sameuser", "samerole" or "replication" makes the name lose # its special character, and just match a database or username with # that name. # # This file is read on server startup and when the postmaster receives # a SIGHUP signal. If you edit the file on a running system, you have # to SIGHUP the postmaster for the changes to take effect. You can # use "pg_ctl reload" to do that. # Put your actual configuration here # ---------------------------------- # # If you want to allow non-local connections, you need to add more # "host" records. In that case you will also need to make PostgreSQL # listen on a non-local interface via the listen_addresses # configuration parameter, or via the -i or -h command line switches. # DO NOT DISABLE! # If you change this first entry you will need to make sure that the # database superuser can access the database using some other method. # Noninteractive access to all databases is required during automatic # maintenance (custom daily cronjobs, replication, and similar tasks). # # Database administrative login by Unix domain socket #local all postgres peer # TYPE DATABASE USER ADDRESS METHOD # "local" is for Unix domain socket connections only #local all all 0.0.0.0/0 md5 # IPv4 local connections: host all all 127.0.0.1/32 trust host all all 10.11.0.200/32 trust host all all 10.11.0.201/32 trust host all all 10.11.0.202/32 trust # postgres connections host all postgres 10.11.0.200/32 trust host all postgres 10.11.0.201/32 trust host all postgres 10.11.0.202/32 trust # pgpool connections host all pgpool 10.11.0.200/32 trust host all pgpool 10.11.0.201/32 trust host all pgpool 10.11.0.202/32 trust # allow nagios on montwo host all nagios 140.197.226.45/32 trust host all postgres 140.197.226.45/32 trust # Allow users connection to database # VPN range IP host all wolf 140.197.235.0/28 trust host all gdiamond 140.197.235.0/28 trust host all kbranson 140.197.235.16/28 trust host all rkeele 140.197.235.16/28 md5 host utahfutures dempey 140.197.235.16/28 trust host moondog dempey 140.197.235.16/28 trust host utahfutures uf_user 140.197.235.16/28 trust host ufdb dempey 140.197.235.16/28 trust host uetn_tech_inventory tableau 140.197.235.16/28 trust # to use DBVisualizer from workstation host utahlink jira 140.197.235.16/28 trust host all postgres 140.197.235.0/28 trust host all jreed 155.101.235.32/28 md5 # Allow connection from elinor host all all 140.197.231.17/32 trust # Allow connection from presto host all all 140.197.231.37/32 trust # resync user host lesson resync_user 127.0.0.1/32 md5 host rubric resync_user 127.0.0.1/32 md5 host usoe_core resync_user 127.0.0.1/32 md5 host utahlink resync_user 127.0.0.1/32 md5 ################## Allow connection for noctools ################# # Host: tubular.uen.net host idashboard_data noctools 140.197.240.4/32 trust # Host: nhr.uen.net host idashboard_data noctools 140.197.240.9/32 trust # Host: changeme.uen.net host idashboard_data noctools 140.197.240.15/32 trust # Host: floor.uen.org host idashboard_data idash_dev 140.197.238.54/32 trust ################# user connections ################################ # Host: api-dev-01 host lessons lessons 10.92.8.75/32 md5 host lessons lesson_user 10.92.8.75/32 md5 host utahlink ulserv_user 10.92.8.75/32 trust host usoe_core ccserv_user 10.92.8.75/32 md5 # Host: cactus-dev-01 host utahlink cactus_user 10.92.8.67/32 md5 # Host: cactus-dev-02 host utahlink cactus_user 10.92.8.98/32 md5 # Host: cgi-dev-01 host utahlink districts_user 10.92.8.50/32 md5 host lesson lesson_user 10.92.8.50/32 md5 host rubric rubric_user 10.92.8.50/32 md5 host sessions sessions_user 10.92.8.50/32 md5 # Host: contact-dev-01.uen.org host contact contact 10.92.8.44/32 md5 # Host: contact-dev-02.uen.org host contact contact 10.92.8.46/32 md5 # Host: corelinks-dev-01 host utahlink corelinks_user 10.92.8.65/32 md5 # Host: csearch-dev-01 host pioneer csearch_user 10.92.8.63/32 md5 host utahlink csearch_user 10.92.8.63/32 md5 host utahitv csearch_user 10.92.8.63/32 md5 host utahitv hosted_dev 10.92.8.63/32 md5 host utahlink csearch_user 140.197.232.6/32 md5 # Host: ctecore-dev-01 WAR=CoreLinkService host usoe_core ctecore_user 10.92.8.82/32 md5 # Host: districts-dev-01 host utahlink districts_user 10.92.8.47/32 md5 # Host: edsearch-dev-01 host utahlink ulserv_user 10.92.8.64/32 md5 # Host: Filemaker host utahlink jira 140.197.230.112/32 trust # Host: Gateway02 host utahitv gateway02_dev 140.197.231.38/32 trust host uen_misc gateway02_dev 140.197.231.38/32 trust host pd_events pd_user 140.197.231.38/32 md5 host moondog moondopguser 140.197.231.38/32 md5 # Host: hosted-dev-01, 02 & hosted-prev-01 host research_quests hosted_dev 10.92.8.59/32 md5 host research_quests hosted_dev 10.92.8.60/32 md5 host research_quests hosted_dev 10.92.7.59/32 md5 host go go_dev 10.92.8.59/32 md5 host go go_dev 10.92.8.60/32 md5 host go go_dev 10.92.7.59/32 md5 host books hosted_dev 10.92.8.59/32 md5 host books hosted_dev 10.92.8.60/32 md5 host books hosted_dev 10.92.7.59/32 md5 host uimc hosted_dev 10.92.8.59/32 md5 host uimc hosted_dev 10.92.8.60/32 md5 host uimc hosted_dev 10.92.7.59/32 md5 host utahitv hosted_dev 10.92.8.59/32 md5 host utahitv hosted_dev 10.92.8.60/32 md5 host utahitv hosted_dev 10.92.7.59/32 md5 host moondog moondogpguser 10.92.8.60/32 md5 host moondog moondogpguser 10.92.7.59/32 md5 # Host: Jira host utahlink jira 140.197.238.49/32 trust host utahlink jira 140.197.238.55/32 trust # Host: idp-dev-01 host identity_provider ws02_dev 140.197.238.148/32 md5 host identity_provider ws02 140.197.238.148/32 trust # Host: idp-dev-01,02,03&04 host ws02_u_db ws02_user 10.92.8.91/32 trust host ws02_shared_registry ws02_user 10.92.8.91/32 trust host ws02_u_db ws02_user 10.92.8.93/32 trust host ws02_shared_registry ws02_user 10.92.8.93/32 trust host ws02_u_db ws02_user 10.92.8.94/32 trust host ws02_shared_registry ws02_user 10.92.8.94/32 trust host ws02_u_db ws02_user 10.92.8.95/32 trust host ws02_shared_registry ws02_user 10.92.8.95/32 trust host lportal ws02_user 10.92.8.91/32 trust host lportal ws02_user 10.92.8.93/32 trust host lportal ws02_user 10.92.8.94/32 trust host lportal ws02_user 10.92.8.95/32 trust # Host idp-dev-05, 06, 07 host wso2_u_db wso2_user 10.92.8.111/32 trust host wso2_shared_registry wso2_user 10.92.8.111/32 trust host wso2_u_db wso2_user 10.92.8.112/32 trust host wso2_shared_registry wso2_user 10.92.8.112/32 trust host wso2_u_db wso2_user 10.92.8.113/32 trust host wso2_shared_registry wso2_user 10.92.8.113/32 trust host lportal ws02_user 10.92.8.111/32 trust host lportal ws02_user 10.92.8.112/32 trust host lportal ws02_user 10.92.8.113/32 trust # Host: idpweb-dev-01&02 host pioneer pioneer 10.92.8.92/32 md5 host pioneer pioneer 10.92.8.97/32 md5 # Host: institutions-dev-01 host utahlink ulserv_user 10.92.8.87/32 trust host utahlink institutions_user 10.92.8.87/32 md5 # Host: institutions-dev-02 host utahlink ulserv_user 10.92.8.86/32 trust host utahlink institutions_user 10.92.8.86/32 md5 # Host: jen - Jenkins host utahfutures uf_user 140.197.230.88/32 trust host ufdb uf_user 140.197.230.88/32 trust # Host: jnode1 and 2 host utahfutures uf_user 140.197.230.94/32 trust host utahfutures uf_user 140.197.230.95/32 trust host ufdb uf_user 140.197.230.94/32 trust host ufdb uf_user 140.197.230.95/32 trust # Host: lessonplan-dev-01 host lessons lessons 10.92.8.78/32 trust host lessons lessons_user 10.92.8.78/32 trust host usoe_core lessons_user 10.92.8.78/32 trust host rubrics lessons_user 10.92.8.78/32 trust # Host: lessonplan-dev-02 host lessons lessons 10.92.8.83/32 trust host lessons lessons_user 10.92.8.83/32 trust host usoe_core lessons_user 10.92.8.83/32 trust # Host: lessonplan-dev-03 host lessons lessons 10.92.8.88/32 trust host lessons lessons_user 10.92.8.88/32 trust host usoe_core lessons_user 10.92.8.88/32 trust # Host: lpadmin-dev-01 host lessons lpadmin_user 10.92.8.81/32 md5 host lessons lesson_user 10.92.8.81/32 md5 # Host: lpserv-prev-01.uen.org host lessonplan lessonplan 10.92.7.47/32 trust # Host: mon.uen.org host wug wug 140.197.226.46/32 md5 host wug wug 140.197.226.40/32 md5 # Host: myuen-dev-01 host lportal myuen_user 10.92.8.84/32 md5 host utahlink myuen_user 10.92.8.84/32 md5 # Host: myuen-prev-01.uen.org host lportal-pre myuen_user 10.92.7.71/32 md5 # Host: onlinelibrary-dev-01.uen.org host pioneer pioneer 10.92.8.70/32 md5 # Host: pioneer-dev-01.uen.org host pioneer pioneer 10.92.8.48/32 md5 # Host: pmt-dev-01 host lportal pmt_user 10.92.8.77/32 md5 # Host: sitedb-beta.uen.net host site_db site_db 140.197.240.20/32 trust # Host: sites-dev-01.uen.org WAR= host utahlink sites_user 10.92.8.69/32 md5 # Host: rubric-dev-01.uen.org host rubrics rubric_user 10.92.8.80/32 md5 host rubrics rubrics_user 10.92.8.80/32 trust # Host: secinfo-dev-01 and secinfo-prev-01 host secinfo secinfo 10.92.8.86/32 trust host secinfo secinfo 10.92.7.70/32 trust # Host: ti-dev-01 host uetn_tech_inventory ti_user 10.92.8.57/32 trust host uetn_tech_inventory flyway_user 10.92.8.57/32 trust host uetn_tech_inventory tableau 140.197.238.44/32 trust # Host: ti-prev-01 host uetn_tech_inventory_prev ti_user 10.92.7.75/32 trust host uetn_tech_inventory_prev flyway_user 10.92.7.75/32 trust # Host: uf-dev-01 host utahfutures uf_user 10.92.8.104/32 trust host ufdb uf_user 10.92.8.104/32 trust # Host: uf-dev-02 host utahfutures uf_user 10.92.8.105/32 trust # Host: wwwuen-dev-01 host moondog moondogpguser 10.92.8.61/32 md5 host utahitv uen_dev 10.92.8.61/32 md5 host utahitv uen 10.92.8.61/32 trust # Host: wwwuen-dev-02 host moondog moondogpguser 10.92.8.72/32 md5 host utahitv uen_dev 10.92.8.72/32 md5 host utahitv uen 10.92.8.72/32 trust # Host: wwwuen-dev-03 host moondog moondogpguser 10.92.8.56/32 md5 host uthaitv uen_dev 10.92.8.56/32 md5 host uthaitv uen 10.92.8.56/32 trust # Host: wwwuen-prev-01 host utahitv uen_prev_dev 10.92.7.61/32 trust host moondog moondogpguser 10.92.7.61/32 md5