thanks for replies. Craig Ringer wrote: >This is a really, really, REALLY bad idea. I agree. John R Pierce wrote: > if you mean client side Javascript running on the end users web browser, > no, it should NOT be allowed to connect to a database server directly. Web pages have username and password with basic, digest or ldap authorization. So if I createuser with same user and password, and if there is md5 or something to encode password, I wonder javascript connects to postgres securely. As John said, I meant client side Javascript. regards -- Sent via pgsql-general mailing list (pgsql-general@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
