On Tue, Nov 19, 2024 at 07:29:27PM -0500, Greg Sabino Mullane wrote: > I just took a fresh look at / compiled this patch, and it all works as > advertised. My one minor nit is this hint: > > HINT: Refer to the PostgreSQL documentation for details about migrating to > another password type. > > We don't really have that in the docs, as near as I can tell, the closest > is 20.5 which says "make all users set new passwords, and change the > authentication method specifications in pg_hba.conf to scram-sha-256." > Maybe that's enough?
That was my initial thinking. I think we have a few other options: * Expand the documentation. Perhaps we could add a step-by-step guide for migrating to SCRAM-SHA-256 since more users will need to do so when MD5 password support is removed. * Remove the hint. It's arguably doing little more than pointing out the obvious, and it doesn't actually tell users where in the documentation to look for this information, anyway. * Both of the above. WDYT? -- nathan
