On Thu, Oct 31, 2019 at 4:58 PM Andrew Dunstan <andrew.duns...@2ndquadrant.com> wrote: > This patch allows the superuser to grant passwordless connection rights > in postgres_fdw user mappings.
This is clearly something that we need, as the current code seems woefully ignorant of the fact that passwords are not the only authentication method supported by PostgreSQL, nor even the most secure. But, I do wonder a bit if we ought to think harder about the overall authentication model for FDW. Like, maybe we'd take a different view of how to solve this particular piece of the problem if we were thinking about how FDWs could do LDAP authentication, SSL authentication, credentials forwarding... -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company
