postgresql

mirror of https://git.postgresql.org/git/postgresql.git synced 2024-08-24 20:27:19 +02:00

History

Magnus Hagander 0516c61b75 Add new clientcert hba option verify-full This allows a login to require both that the cn of the certificate matches (like authentication type cert) and that another authentication method (such as password or kerberos) succeeds as well. The old value of clientcert=1 maps to the new clientcert=verify-ca, clientcert=0 maps to the new clientcert=no-verify, and the new option erify-full will add the validation of the CN. Author: Julian Markwort, Marius Timmer Reviewed by: Magnus Hagander, Thomas Munro	2019-03-09 12:19:47 -08:00
..
sgml	Add new clientcert hba option verify-full	2019-03-09 12:19:47 -08:00
Makefile	Remove maintainer-check target, fold into normal build	2013-10-10 20:11:56 -04:00

Magnus Hagander 0516c61b75 Add new clientcert hba option verify-full

This allows a login to require both that the cn of the certificate
matches (like authentication type cert) *and* that another
authentication method (such as password or kerberos) succeeds as well.

The old value of clientcert=1 maps to the new clientcert=verify-ca,
clientcert=0 maps to the new clientcert=no-verify, and the new option
erify-full will add the validation of the CN.

Author: Julian Markwort, Marius Timmer
Reviewed by: Magnus Hagander, Thomas Munro

2019-03-09 12:19:47 -08:00

sgml

Add new clientcert hba option verify-full

2019-03-09 12:19:47 -08:00

Makefile

Remove maintainer-check target, fold into normal build

2013-10-10 20:11:56 -04:00