RADIUS secret in file
Attached is the "last step" of the RADIUS authenticaiton as I promised
Stephen - which allows the reading of the RAIDUS secret from a file
instead of hardcoded in pg_hba.conf. One reason being you don't want
the secret in your config file that may be in a shared repository or
such. IIRC Stephen had some other reason, but I'll leave it to him to
fill that in :-)
--
Magnus Hagander
Me: http://www.hagander.net/
Work: http://www.redpill-linpro.com/
Attachments:
radius_file.patchapplication/octet-stream; name=radius_file.patchDownload+84-9
Magnus Hagander wrote:
Attached is the "last step" of the RADIUS authenticaiton as I promised
Stephen - which allows the reading of the RAIDUS secret from a file
instead of hardcoded in pg_hba.conf. One reason being you don't want
the secret in your config file that may be in a shared repository or
such. IIRC Stephen had some other reason, but I'll leave it to him to
fill that in :-)
Do we really need this in addition to the existing pg_hba.conf @-include
functionality?
Stefan
* Magnus Hagander (magnus@hagander.net) wrote:
IIRC Stephen had some other reason, but I'll leave it to him to
fill that in :-)
I was really looking for multi-server support as well, and support
for a config-file format that's commonly used for RADIUS. I'll
take a whack at doing that this evening.
Thanks,
Stephen