Share via

Will we get access to pg_shadow in Azure Postgres Flexible Server?

Anonymous
2023-08-04T11:26:10.28+00:00

Hi,

We have been using Azure Postgres Flexible Server and pgbouncer on top of it. Whenever, we add any new user, we want to add the user details in pgbouncer's auth_file (userlist.txt). It is becoming unmanageable since our requirement is to create separate database user for each user. We found auth_query can be used to solve this. But pg_shadow is not accessible in Azure Postgres Flexible server. Is there any way to get access to pg_shadow? if not, how can auth_query implemented with Azure Postgres Flexible server?

Azure Database for PostgreSQL

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Oury Ba-MSFT 20,911 Reputation points Microsoft Employee Moderator
    2023-08-04T22:11:54.8066667+00:00

    @Anonymous Thank you for reaching out.

    My understanding is that you are looking to add user in pgbouncer's auth_file.

    Is there any way to get access to pg_shadow? if not, how can auth_query implemented with Azure Postgres Flexible server?

    The view pg_shadow exists for backwards compatibility: it emulates a catalog that existed in PostgreSQL before version 8.1. It shows properties of all roles that are marked as rolcanlogin in pg_authid

    The name stems from the fact that this table should not be readable by the public since it contains passwords. pg_user is a publicly readable view on pg_shadow that blanks out the password field.

    Access to this table is restricted in Azure Postgres Flexible Server.

    same question was raised here https://learn.microsoft.com/en-us/answers/questions/1316636/azure-flexible-postgres-configuring-auth-query-ref

    Please let us know if that answer your question.

    Regards,

    Oury

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.