diff options
| author | Peter Eisentraut <peter@eisentraut.org> | 2019-02-01 00:17:45 +0100 |
|---|---|---|
| committer | Peter Eisentraut <peter@eisentraut.org> | 2019-02-01 00:33:47 +0100 |
| commit | f60a0e96778854ed0b7fd4737488ba88022e47bd (patch) | |
| tree | d4d25d5b3d8491ad24128bf8ed419938c6e9119d /doc/src | |
| parent | 00d1e88d36687ceae1be2317fac90e967941c085 (diff) | |
| download | postgresql-f60a0e96778854ed0b7fd4737488ba88022e47bd.tar.gz postgresql-f60a0e96778854ed0b7fd4737488ba88022e47bd.zip | |
Add more columns to pg_stat_ssl
Add columns client_serial and issuer_dn to pg_stat_ssl. These allow
uniquely identifying the client certificate.
Rename the existing column clientdn to client_dn, to make the naming
more consistent and easier to read.
Discussion: https://www.postgresql.org/message-id/flat/398754d8-6bb5-c5cf-e7b8-22e5f0983caf@2ndquadrant.com/
Diffstat (limited to 'doc/src')
| -rw-r--r-- | doc/src/sgml/monitoring.sgml | 20 |
1 files changed, 18 insertions, 2 deletions
diff --git a/doc/src/sgml/monitoring.sgml b/doc/src/sgml/monitoring.sgml index 60a85a78981..7a84f513404 100644 --- a/doc/src/sgml/monitoring.sgml +++ b/doc/src/sgml/monitoring.sgml @@ -2201,15 +2201,31 @@ SELECT pid, wait_event_type, wait_event FROM pg_stat_activity WHERE wait_event i or NULL if SSL is not in use on this connection</entry> </row> <row> - <entry><structfield>clientdn</structfield></entry> + <entry><structfield>client_dn</structfield></entry> <entry><type>text</type></entry> <entry>Distinguished Name (DN) field from the client certificate used, or NULL if no client certificate was supplied or if SSL is not in use on this connection. This field is truncated if the DN field is longer than <symbol>NAMEDATALEN</symbol> (64 characters - in a standard build) + in a standard build). </entry> </row> + <row> + <entry><structfield>client_serial</structfield></entry> + <entry><type>numeric</type></entry> + <entry>Serial number of the client certificate, or NULL if no client + certificate was supplied or if SSL is not in use on this connection. The + combination of certificate serial number and certificate issuer uniquely + identifies a certificate (unless the issuer erroneously reuses serial + numbers).</entry> + </row> + <row> + <entry><structfield>issuer_dn</structfield></entry> + <entry><type>text</type></entry> + <entry>DN of the issuer of the client certificate, or NULL if no client + certificate was supplied or if SSL is not in use on this connection. + This field is truncated like <structfield>client_dn</structfield>.</entry> + </row> </tbody> </tgroup> </table> |