Adrian Klaver <adrian.klaver@xxxxxxxxxxx> writes: > On 5/14/24 00:57, Rama Krishnan wrote: >> I recently set a user's password validity to "2024-05-13", but despite >> this, the user is still able to connect to the database. Is this a bug, >> or is the "valid until" parameter just for identification purposes, >> indicating when the password will expire? > The VALID UNTIL clause sets a date and time after which the role's > password is no longer valid. If this clause is omitted the password will > be valid for all time. The important point there is that the *password* is not usable after the specified date. If the user logs in via some non-password-based authentication method, that's fine (and it's on the infrastructure of that auth method to enforce whatever restrictions it thinks are appropriate). regards, tom lane
