Difference between revisions of "PostgreSQL pg hba.conf"

From wikieduonline
Jump to navigation Jump to search
 
(18 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{lowercase}}
 
 
https://www.postgresql.org/docs/current/auth-pg-hba-conf.html
 
https://www.postgresql.org/docs/current/auth-pg-hba-conf.html
 +
 +
* HBA Host Based [[Authentication]]
  
 
<code>[[pg_hba.conf]]</code> client [[authentication]] configuration file.
 
<code>[[pg_hba.conf]]</code> client [[authentication]] configuration file.
 +
* <code>[[/etc/postgresql/14/main/pg_hba.conf]]</code>
 +
* <code>[[/etc/postgresql/13/main/pg_hba.conf]]</code>
 
* <code>[[/etc/postgresql/12/main/pg_hba.conf]]</code>
 
* <code>[[/etc/postgresql/12/main/pg_hba.conf]]</code>
 
* <code> /etc/postgresql/11/main/pg_hba.conf</code>
 
* <code> /etc/postgresql/11/main/pg_hba.conf</code>
 
* <code> /etc/postgresql/10/main/pg_hba.conf</code>
 
* <code> /etc/postgresql/10/main/pg_hba.conf</code>
  
 +
 +
[[Amazon Linux 2]]:
 +
* <code>[[/usr/share/pgsql/pg_hba.conf.sample]]</code>
 +
* <code>[[/var/lib/pgsql/data/pg_hba.conf]]</code> (<code>[[sudo service postgresql initdb]]</code>)
  
 
https://www.postgresql.org/docs/11/runtime-config-connection.html#RUNTIME-CONFIG-CONNECTION-SETTINGS
 
https://www.postgresql.org/docs/11/runtime-config-connection.html#RUNTIME-CONFIG-CONNECTION-SETTINGS
  listen_addresses
+
   
listen_addresses 0.0.0.0
+
* <code>[[listen_addresses]]</code>
 +
* <code>listen_addresses 0.0.0.0</code>
  
  
 
== Remote communication ==
 
== Remote communication ==
  cat /etc/postgresql/12/main/[[pg_hba.conf]] | grep -v "#" | grep .
+
  cat /etc/postgresql/*/main/[[pg_hba.conf]] | grep -v "#" | grep .
 
  local  all            postgres                                peer
 
  local  all            postgres                                peer
 
  local  all            all                                    peer
 
  local  all            all                                    peer
Line 25: Line 33:
  
 
To allow remote communications from all [[IP]]s <ref>https://stackoverflow.com/questions/18580066/how-to-allow-remote-access-to-postgresql-database</ref>:
 
To allow remote communications from all [[IP]]s <ref>https://stackoverflow.com/questions/18580066/how-to-allow-remote-access-to-postgresql-database</ref>:
  /etc/postgresql/12/main/[[pg_hba.conf]]  
+
  /etc/postgresql/*/main/[[pg_hba.conf]]  
 
  local  all            postgres                                peer
 
  local  all            postgres                                peer
 
  local  all            all                                    peer
 
  local  all            all                                    peer
Line 33: Line 41:
 
  host    replication    all            127.0.0.1/32            md5
 
  host    replication    all            127.0.0.1/32            md5
 
  host    replication    all            ::1/128                md5
 
  host    replication    all            ::1/128                md5
 +
 +
== Errors ==
 +
* <code>[Nest] 41  - 09/27/2022, 10:12:12 PM  ERROR [ExceptionHandler] [[no pg_hba.conf entry for host]] "20.10.2.58", user "your-user", database "your-db", SSL off</code>
 +
* <code>[[no pg_hba.conf entry for host]]</code>
 +
  
 
== Related terms ==
 
== Related terms ==
Line 38: Line 51:
 
* <code>[[/etc/postgresql/12/main/postgresql.conf]]</code>
 
* <code>[[/etc/postgresql/12/main/postgresql.conf]]</code>
 
* <code>[[$HOME/.pg_service.conf]]</code>
 
* <code>[[$HOME/.pg_service.conf]]</code>
 +
* <code>[[ident]]</code>
  
 
== See also ==
 
== See also ==
 +
* {{pg_hba.conf}}
 
* {{PostgreSQL}}
 
* {{PostgreSQL}}
  
  
 
[[Category:PosgreSQL]]
 
[[Category:PosgreSQL]]

Latest revision as of 15:14, 3 February 2023

https://www.postgresql.org/docs/current/auth-pg-hba-conf.html

pg_hba.conf client authentication configuration file.


Amazon Linux 2:

https://www.postgresql.org/docs/11/runtime-config-connection.html#RUNTIME-CONFIG-CONNECTION-SETTINGS


Remote communication[edit]

cat /etc/postgresql/*/main/pg_hba.conf | grep -v "#" | grep .
local   all             postgres                                peer
local   all             all                                     peer
host    all             all             127.0.0.1/32            md5
host    all             all             ::1/128                 md5
local   replication     all                                     peer
host    replication     all             127.0.0.1/32            md5
host    replication     all             ::1/128                 md5


To allow remote communications from all IPs [1]:

/etc/postgresql/*/main/pg_hba.conf 
local   all             postgres                                peer
local   all             all                                     peer
host    all             all             0.0.0.0/0               md5
host    all             all             ::/0                    md5
local   replication     all                                     peer
host    replication     all             127.0.0.1/32            md5
host    replication     all             ::1/128                 md5

Errors[edit]


Related terms[edit]

See also[edit]

  • https://stackoverflow.com/questions/18580066/how-to-allow-remote-access-to-postgresql-database
  • Advertising: