Bill Moran <wmoran@xxxxxxxxxxxxxxxxxxxxxxx> writes: > In response to Tom Lane <tgl@xxxxxxxxxxxxx>: >> Yeah, but the postmaster can't read pg_authid, nor any other table, >> because it's not logically connected to the database. So any change >> to pg_authid gets copied to a "flat" ASCII-text file for the postmaster. > Would using kerberos or some other external auth mechanism work around this? Kerberos can't read the database directly either, so I'm not sure I see your point. regards, tom lane
