Ok thanks for the advice John - much appreciated. ________________________________________ From: pgsql-general-owner@xxxxxxxxxxxxxx [pgsql-general-owner@xxxxxxxxxxxxxx] On Behalf Of John R Pierce [pierce@xxxxxxxxxxxx] Sent: Friday, 30 January 2015 10:33 p.m. To: pgsql-general@xxxxxxxxxxxxxx Subject: Re: HTTP user authentication against PostgreSQL On 1/30/2015 12:31 AM, Jeremy Palmer wrote: > The PostgreSQL DB is currently setup with Kerberos for Windows SSO, as well as MD5 password authentication for another pool of other PostgreSQL users who are not part of our Active Directory. LDAP could be used, but then we would have to move the current external users into the AD, and I'm not sure that can happen due to policy reasons. active directory IS a sort of ldap. I'd be looking at connecting apache to that AD too, and not trying to do it via postgres. associating a postgres connection with each HTTP client session would be inefficent and ugly, especially as http can have multiple threads for a single client session, yet http is considered sessionless. -- john r pierce 37N 122W somewhere on the middle of the left coast -- Sent via pgsql-general mailing list (pgsql-general@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general This message contains information, which may be in confidence and may be subject to legal privilege. If you are not the intended recipient, you must not peruse, use, disseminate, distribute or copy this message. If you have received this message in error, please notify us immediately (Phone 0800 665 463 or info@xxxxxxxxxxxx) and destroy the original message. LINZ accepts no responsibility for changes to this email, or for any attachments, after its transmission from LINZ. Thank You. -- Sent via pgsql-general mailing list (pgsql-general@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
