[pgpool-hackers: 2993] Re: New feature: supporting SCRAM and CERT based authentication in Pgpool-II
jesper.pedersen at redhat.com
Sat Aug 25 01:12:12 JST 2018
On 08/23/2018 01:53 PM, Jesper Pedersen wrote:
> I think we should add a _pgpool_ identifier to the SSL configuration to
> make it clear that its 2) that is being supported at the moment, like
> ssl_pgpool_cert and so on. 3) and 4) could be ssl_backend_ based ones.
Here is a start in that direction. I added the documentation for the
ssl_backend_ settings, but those needs a discussion. They are
Maybe just a directory structure, like
and so on, if option is 'sslusers'.
I think we can assume that all connections share their policy. Default
Certificate authority. Shared by all connections.
Certificate revoke list. Shared by all connections.
FYI, I havn't looked at the Client to Pgpool-II part yet in detail.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 28043 bytes
Desc: not available
More information about the pgpool-hackers