Stephen Frost <sfrost@snowman.net> writes:
> Why do we need pg_shadow or pg_user or related views at all..?
A lot of code looks at those just to get usernames. I am not in favor of
breaking such stuff without need.
How about we just say that the password in these old views always reads
out as '********' even when there is a password, and we invent new views
that carry real auth information? (Hopefully in an extensible way.)
regards, tom lane