|
Hi
We are developing application in
Microsoft Access linked via ODBC with PostgreSQL 8.2 database. The ODBC Data
Source is configured to login using single user and password for all users
logining to our application in MS.
Now. We need to check out if
user that trying to login has valid user and password in PostgreSQL database. We
are asking tables pg_authid and/or pg_shadow for user names and passwords.
Passwords in those tables are stored in md5. We have following statement to
compare password hash with password typed by user:
SELECT 1
FROM pg_authid
WHERE
rolename='<typed_user_name>'
AND
rolpassword='md5'||md5('<typed_user_password>');
But hash generated this way is
different than password hash stored in pg_authid.
What we are doing wrong ? Is
there any possibility to checkout passwords in pg_authid table ?
P.S. Sorry for my awfull english.
----------
Michal Koba
|
