Postgresql gss user map doesn't work

Поиск
Список
Период
Сортировка
От xujian
Тема Postgresql gss user map doesn't work
Дата
Msg-id BAY181-W52A150EEDDA570E26EF525A1A90@phx.gbl
обсуждение исходный текст
Ответы Re: Postgresql gss user map doesn't work  (xujian <jamesxu@outlook.com>)
Список pgsql-admin
Hello,
        I have a problem when I am using gss map. I want to map the user xxx@company.com to db role company_com_xxx
here is my pa_hba.conf:
=================
# TYPE  DATABASE        USER            ADDRESS                 METHOD
host      all                      all                all                             gss include_realm=1 map=mymap

here is the pg_ident.conf
=================
# MAPNAME       SYSTEM-USERNAME         PG-USERNAME
mymap        /(.*)@COMPANY.COM              company_com_\1

However, it doesn't work, I got error message
=================
LOG:  no match in usermap "mymap" for user "xxx" authenticated as "xxx@COMPANY.COM"
FATAL:  GSSAPI authentication failed for user "xxx"
DETAIL:  Connection matched pg_hba.conf line 88: "host    all             all       all                  gss include_realm=1 map=mymap"


but if I changed the map to 
=================
# MAPNAME       SYSTEM-USERNAME               PG-USERNAME
mymap               /(.*)@COMPANY.COM              \1

then I can login, I have created role xxx and company_com_xxx in db side. even if I hard code the username in the mapping like
=================
# MAPNAME       SYSTEM-USERNAME         PG-USERNAME
mymap        /(.*)@COMPANY.COM              company_com_xxx

it still doesn't work. any idea? 

Thanks in advance!

James

В списке pgsql-admin по дате отправления:

Предыдущее
От: Ankur Kaushik
Дата:
Сообщение: Re: dump using copy failed
Следующее
От: litu16
Дата:
Сообщение: SUM all timeelapse WHERE timetype = 'Break' but only the rows that are after(below) timetype = 'Start'