aboutsummaryrefslogtreecommitdiff
path: root/content/post
diff options
context:
space:
mode:
authorAditya <bluenerd@protonmail.com>2023-01-04 08:56:14 +0530
committerAditya <bluenerd@protonmail.com>2023-01-04 08:56:14 +0530
commitf2f6f7ddcba5eced5d537041143fa9091e424117 (patch)
treec37f1923a981b07eb7b1a8e929e07ce93b95fe64 /content/post
parent3f044bd49049ae8c37ee60d5c97e74b347c09e9c (diff)
psql auth post
Diffstat (limited to 'content/post')
-rw-r--r--content/post/psql-peer-auth-failed.md52
1 files changed, 52 insertions, 0 deletions
diff --git a/content/post/psql-peer-auth-failed.md b/content/post/psql-peer-auth-failed.md
new file mode 100644
index 0000000..ecf9b12
--- /dev/null
+++ b/content/post/psql-peer-auth-failed.md
@@ -0,0 +1,52 @@
+---
+title: "psql: FATAL: Peer authentication failed for user"
+date: 2023-01-04T08:47:34+05:30
+lastmod: 2023-01-04T08:47:34+05:30
+draft: false
+keywords: [postgresql]
+description: ""
+tags: [database postgres]
+categories: [linux]
+author: ""
+
+# You can also close(false) or open(true) something for this content.
+# P.S. comment can only be closed
+comment: false
+toc: false
+autoCollapseToc: false
+postMetaInFooter: true
+hiddenFromHomePage: false
+# You can also define another contentCopyright. e.g. contentCopyright: "This is another copyright."
+contentCopyright: false
+reward: false
+mathjax: false
+mathjaxEnableSingleDollar: false
+mathjaxEnableAutoNumber: false
+
+# You unlisted posts you might want not want the header or footer to show
+hideHeaderAndFooter: false
+
+# You can enable or disable out-of-date content warning for individual post.
+# Comment this out to use the global config.
+#enableOutdatedInfoWarning: false
+
+flowchartDiagrams:
+ enable: false
+ options: ""
+
+sequenceDiagrams:
+ enable: false
+ options: ""
+
+---
+The order of rules in `pg_hba.conf` matters.
+<!--more-->
+
+Trying to connect to postgresql database with a standard user fails with `psql: FATAL: Peer authentication failed fr user "user1"`.
+
+The second line of `pg_hba.conf` makes your connection attempt fail:
+```
+local all all peer
+```
+
+The order of rules matter. If the first one that matches the access method, username, database name and source IP range fails, there will be no second attempt. So either remove this line, your place your rule above this one.