Stephen Frost <sfrost@snowman.net> writes:
>> Alvaro Herrera <alvherre@2ndquadrant.com> writes:
>
> How about something like this?
>
> * If GSSAPI Encryption is enabled, then call pg_GSS_have_cred_cache()
> * which will return true if we can acquire credentials (and give us a
> * handle to use in conn->gcred), and then send a packet to the server
> * asking for GSSAPI Encryption (and skip past SSL negotiation and
> * regular startup below).
This looks correct to me (and uses plenty of parentheticals, so it feels
in keeping with something I'd write) :)
Thanks,
--Robbie