Russell Foster <russell.foster.cod...@gmail.com> writes: > I have some code that I've been using that supports adding and > authenticating Windows groups via the pg_ident file. This is useful for > sysadmins as it lets them control database access outside the database > using Windows groups. It has a new > indicator (+), that signifies the identifier is a Windows group, as in the > following example:
> # MAPNAME SYSTEM-USERNAME PG-USERNAME > "Users" "+User group" postgres While I don't object to adding functionality to access Windows groups, I do object to using syntax that makes random assumptions about what a user name can or can't be. There was a prior discussion of this in the context of some other patch that had a similar idea. [ digs in archives... ] Ah, here it is: https://www.postgresql.org/message-id/flat/4ba3ad54-bb32-98c6-033a-ccca7058fc2f%402ndquadrant.com It doesn't look like we arrived at any firm consensus about what to do instead, but maybe you can find some ideas there. regards, tom lane
