Hi again, For reference, this is my current spec: pg_add_hba [options] yourwebappdb yourwebappuser pg_test_hba [options] yourwebappdb yourwebappuser pg_remove_hba [options] yourwebappdb yourwebappuser Options: --cluster: self-explanatory, defaults to default cluster --ip: IP and netmask for host socket; if not given, defaults to Unix socket (local) --method: defaults to "md5" for TCP connections, and "ident" for Unix socket connections --force-ssl: If given, create a "hostssl" entry, otherwise a "host" entry For pg_remove_hba, only --cluster is allowed; it will remove all hba entries that refer to the given db/user pair. pg_test_hba checks whether the given connection is allowed; if so, it exits with 0, otherwise it prints the required pg_hba.conf line to stdout and exits with 1. If pg_hba.conf has a scrambled format that cannot be parsed by pg_*_hba, the scripts exit with 2. Martin -- Martin Pitt http://www.piware.de Ubuntu Developer http://www.ubuntulinux.org Debian Developer http://www.debian.org
Attachment:
signature.asc
Description: Digital signature