May 2018
Intermediate to advanced
576 pages
30h 25m
English
Create a pg_ident.conf file in the usual place (PGDATA), with lines in the following format:
map-name system-username database-username
Here, map-name is the value of the map option from the corresponding line in pg_hba.conf, system-username is the username that the external system authenticated the connection as, and database-username is the database user this system user is allowed to connect as. The same system user may be allowed to connect as multiple database users, so this is not a 1:1 mapping, but rather a list of allowed database users for each system user.
If system-username starts with a slash (/), then the rest of it is treated as a regular expression rather than a directly matching string, and it is possible to ...