Thread
-
RADIUS secret in file
Magnus Hagander <magnus@hagander.net> — 2010-02-15T16:31:16Z
Attached is the "last step" of the RADIUS authenticaiton as I promised Stephen - which allows the reading of the RAIDUS secret from a file instead of hardcoded in pg_hba.conf. One reason being you don't want the secret in your config file that may be in a shared repository or such. IIRC Stephen had some other reason, but I'll leave it to him to fill that in :-) -- Magnus Hagander Me: http://www.hagander.net/ Work: http://www.redpill-linpro.com/
-
Re: RADIUS secret in file
Stefan Kaltenbrunner <stefan@kaltenbrunner.cc> — 2010-02-15T16:37:20Z
Magnus Hagander wrote: > Attached is the "last step" of the RADIUS authenticaiton as I promised > Stephen - which allows the reading of the RAIDUS secret from a file > instead of hardcoded in pg_hba.conf. One reason being you don't want > the secret in your config file that may be in a shared repository or > such. IIRC Stephen had some other reason, but I'll leave it to him to > fill that in :-) Do we really need this in addition to the existing pg_hba.conf @-include functionality? Stefan
-
Re: RADIUS secret in file
Stephen Frost <sfrost@snowman.net> — 2010-02-15T16:52:12Z
* Magnus Hagander (magnus@hagander.net) wrote: > IIRC Stephen had some other reason, but I'll leave it to him to > fill that in :-) I was really looking for multi-server support as well, and support for a config-file format that's commonly used for RADIUS. I'll take a whack at doing that this evening. Thanks, Stephen