[pgpool-hackers: 2892] Re: New feature: supporting SCRAM and CERT based authentication in Pgpool-II
Tatsuo Ishii
ishii at sraoss.co.jp
Wed Jul 25 21:34:08 JST 2018
>> I found that if both allow_clear_text_frontend_auth and
>> enable_pool_hba are on, then nobody can connect to pgpool.
>>
>> t-ishii at localhost: psql -p 11000 test
>> psql: FATAL: client authentication failed
>> DETAIL: missing or erroneous pool_hba.conf file
>> HINT: see pgpool log for details
>>
>> This is a disaster and I think It's better for pgpool to refuse
>> starting. Or maybe we should ignore one of them (and start pgpool)
>> What do you think?
>>
>
> You must have hit some bug. Its not intentional.
>
> Did you provided the valid pool_hba.conf file for this test. I have ran a
> quick test
> with valid pool_hba.conf and allow_clear_text_frontend_auth=on and its
> working
>
> Can you please provide the steps to reproduce this issue.
Sure.
1. Run regression 020.allow_clear_text_frontend_auth test.
2. cd tests/020.allow_clear_text_frontend_auth/testdir
3. echo "enable_pool_hba = on" >> etc/pgpool.conf
4. ./startall
5. psql -p 11000 test
psql: FATAL: client authentication failed
DETAIL: missing or erroneous pool_hba.conf file
HINT: see pgpool log for details
Best regards,
--
Tatsuo Ishii
SRA OSS, Inc. Japan
English: http://www.sraoss.co.jp/index_en.php
Japanese:http://www.sraoss.co.jp
More information about the pgpool-hackers
mailing list