Re: Improve OAuth discovery logging
Zsolt Parragi <zsolt.parragi@percona.com>
From: Zsolt Parragi <zsolt.parragi@percona.com>
To: Jacob Champion <jacob.champion@enterprisedb.com>
Cc: Andrey Borodin <x4mmm@yandex-team.ru>, Chao Li <li.evan.chao@gmail.com>, Daniel Gustafsson <daniel@yesql.se>,
PostgreSQL Hackers <pgsql-hackers@postgresql.org>, Michael Paquier <michael@paquier.xyz>, Tom Lane <tgl@sss.pgh.pa.us>
Date: 2026-03-16T06:24:13Z
Lists: pgsql-hackers
Attachments
- v7-0001-Improve-OAuth-discovery-logging.patch (application/octet-stream) patch v7-0001
> I'm experimenting with an ereport(FATAL_CLIENT_ONLY) option, in the > same vein as WARNING_CLIENT_ONLY, to try to cover this. I attached v7 that uses that and removes the abandoned handling as it is no longer needed with it. > P.S. I would eventually like to record our undocumented SASL profile > in a test suite (he said, staring at pg-pytest)... That would be definitely useful, with the todo comment and this not being documented I thought that this is a proper way to handle the issue. Even a proper documentation about it would be a good starting point.
Commits
-
oauth: Don't log discovery connections by default
- e020a897efea 19 (unreleased) landed
-
sasl: Allow backend mechanisms to "abandon" exchanges
- c4ff16339f07 19 (unreleased) landed
-
Add FATAL_CLIENT_ONLY to ereport/elog
- c2bca7cc9621 19 (unreleased) landed
-
oauth_validator: Avoid races in log_check()
- ab8af1db4303 19 (unreleased) cited