View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000648 | Pgpool-II | Bug | public | 2020-09-11 08:42 | 2020-09-16 11:43 |
| Reporter | Carlos Mendez | Assigned To | t-ishii | ||
| Priority | high | Severity | major | Reproducibility | have not tried |
| Status | closed | Resolution | open | ||
| Platform | Linux | OS | RHEL 8.2 | OS Version | 8.2 |
| Product Version | 4.1.3 | ||||
| Summary | 0000648: Looks pgpool is not taking the configuration of pool_passwd after password change | ||||
| Description | currently we need to change some passwords in our postgres cluster but after we execute the following procedure the user is not able to connect: 1. Password change in Postgres postgres=# alter role usr_borrados_car password '$Usr3l1m1d0$'; ALTER ROLE 2. Password modification in 3 pgpools [root@pgpool02 ~]# /usr/bin/pg_md5 --md5auth --username=usr_borrados_car -p password: $Usr3l1m1d0$ 3. [postgres@psql01 ~]$ psql -h watchdog -p 9999 -d postgres -U usr_borrados_car -W Password: psql: error: could not connect to server: ERROR: md5 authentication failed DETAIL: password does not match I have observed that immediatly after to change the password we are unable to connect but after some 20 minutes looks it is working Why is happening this? [postgres@psql01 data]$ psql -h watchdog -p 9999 -d postgres -U usr_borrados_car -W Password: psql (12.4) Type "help" for help. postgres=> | ||||
| Additional Information | pg_hba.conf # "local" is for Unix domain socket connections only local all all trust # IPv4 local connections: host all all 0.0.0.0/0 md5 # IPv6 local connections: host all all ::1/128 trust # Allow replication connections from localhost, by a user with the # replication privilege. local replication all trust host replication all 127.0.0.1/32 trust host replication all ::1/128 trust host replication barman 0.0.0.0/0 md5 host replication replicate 0.0.0.0/0 md5 *********************************************************************************** pool_hba.conf host all all 0.0.0.0/0 md5 ************************************************************************************ more pool_passwd usr_borrados_car:md57d746bec425ab0c3d7940045118816e6 ************************************************************************************ postgres=# select passwd from pg_shadow where usename = 'usr_borrados_car'; passwd ------------------------------------- md57d746bec425ab0c3d7940045118816e6 (1 row) | ||||
| Tags | No tags attached. | ||||
|
|
Not sure why after 20 minutes pool_passwd is refreshed, but I think that after changing pool_passwd, you need to reload pool_passwd by using pgpool reload command. https://www.pgpool.net/docs/latest/en/html/auth-methods.html |
|
|
Hi T-ishii Thanks for the update I have applied the reload, the question now is, every time a password is changed its mandatory apply the reload? pgpool -F pool_passwd reload Regards |
|
|
Yes. BTW, if you don't want to maintain pool_passwd and reload, you can use allow_clear_text_frontend_auth. https://www.pgpool.net/docs/latest/en/html/runtime-config-connection.html#GUC-ALLOW-CLEAR-TEXT-FRONTEND-AUTH |
|
|
Ok understood Incident can be closed Regards |
|
|
Thanks for confirmation. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2020-09-11 08:42 | Carlos Mendez | New Issue | |
| 2020-09-13 09:25 | t-ishii | Note Added: 0003561 | |
| 2020-09-13 09:25 | t-ishii | Assigned To | => t-ishii |
| 2020-09-13 09:25 | t-ishii | Status | new => feedback |
| 2020-09-15 01:15 | Carlos Mendez | Note Added: 0003566 | |
| 2020-09-15 01:15 | Carlos Mendez | Status | feedback => assigned |
| 2020-09-15 06:33 | t-ishii | Note Added: 0003567 | |
| 2020-09-15 06:33 | t-ishii | Status | assigned => feedback |
| 2020-09-16 07:47 | Carlos Mendez | Note Added: 0003569 | |
| 2020-09-16 07:47 | Carlos Mendez | Status | feedback => assigned |
| 2020-09-16 11:43 | t-ishii | Note Added: 0003570 | |
| 2020-09-16 11:43 | t-ishii | Status | assigned => closed |
