[pgpool-hackers: 3002] Re: New feature: supporting SCRAM and CERT based authentication in Pgpool-II

Jesper Pedersen jesper.pedersen at redhat.com
Tue Aug 28 03:55:20 JST 2018


Hi,

On 08/26/2018 09:50 PM, Tatsuo Ishii wrote:
> You want to do these,
> 
> Client <--SSL/SCRAM --> Pgpool-II
> Client <--non SSL/SCRAM --> Pgpool-II
> 
> but you don't want to do this?
> 
> Client <--SSL/SSL Cert auth --> Pgpool-II
>

I just SSL as a transport security layer. Other people may want to use 
SSL/Cert auth in the stack.

> But you said:
>>>>> The goal is to have SCRAM-SHA256 with SSL client certificate
>>>>> authentication in the entire stack: client <-> pgpool <-> PostgreSQL.
> 
> So I am confused.

The problem is that pgpool <- SSL -> PostgreSQL doesn't work atm.

Best regards,
  Jesper


More information about the pgpool-hackers mailing list