| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Bruno Wolff III <bruno(at)wolff(dot)to> |
| Cc: | Alvaro Herrera <alvherre(at)dcc(dot)uchile(dot)cl>, Rod Taylor <rbt(at)rbt(dot)ca>, Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: ALTER USER |
| Date: | 2003-03-17 14:19:54 |
| Message-ID: | 5842.1047910794@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Bruno Wolff III <bruno(at)wolff(dot)to> writes:
> Is it just the password that expires or the account? The comment for
> valid until says the password is valid until that time. However, one of
> the examples says the account is valid until that time.
Given the current implementation, I think it's correct to say that
the password expires not the account:
1. the userid isn't deleted or anything like that.
2. validuntil is only checked in password authentication methods; if you
are able to connect via a non-password auth method (eg IDENT) then it's
not checked.
I've never been quite sure whether #2 is a bug or a feature, though.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Galbavy | 2003-03-17 14:32:47 | Re: ALTER USER |
| Previous Message | Tom Lane | 2003-03-17 14:13:52 | Re: transaction abort |