Skip to content

Commit 0028b22

Browse files
tglsfdctglsfdc
committed
Some small editorialization on the protocol documentation for GSSAPI/SSPI
authentication.
1 parent 81e7708 commit 0028b22

File tree

1 file changed

+11
-8
lines changed

1 file changed

+11
-8
lines changed

doc/src/sgml/protocol.sgml

Lines changed: 11 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,4 @@
1-
<!-- $PostgreSQL: pgsql/doc/src/sgml/protocol.sgml,v 1.72 2008/01/15 22:18:20 tgl Exp $ -->
1+
<!-- $PostgreSQL: pgsql/doc/src/sgml/protocol.sgml,v 1.73 2008/02/08 18:18:05 tgl Exp $ -->
22

33
<chapter id="protocol">
44
<title>Frontend/Backend Protocol</title>
@@ -238,8 +238,8 @@
238238
For all authentication methods except GSSAPI and SSPI, there is at most
239239
one request and one response. In some methods, no response
240240
at all is needed from the frontend, and so no authentication request
241-
occurs. For GSSAPI and SSPI, multiple iterations of packets may be needed to
242-
complete the authentication.
241+
occurs. For GSSAPI and SSPI, multiple exchanges of packets may be needed
242+
to complete the authentication.
243243
</para>
244244

245245
<para>
@@ -370,9 +370,9 @@
370370
or a previous AuthenticationGSSContinue). If the GSSAPI
371371
or SSPI data in this message
372372
indicates more data is needed to complete the authentication,
373-
the frontend must send this data as another PasswordMessage. If
374-
GSSAPI authentication is completed by this message, the server
375-
will also send AuthenticationOk to indicate successful authentication
373+
the frontend must send that data as another PasswordMessage. If
374+
GSSAPI or SSPI authentication is completed by this message, the server
375+
will next send AuthenticationOk to indicate successful authentication
376376
or ErrorResponse to indicate failure.
377377
</para>
378378
</listitem>
@@ -1808,7 +1808,7 @@ AuthenticationGSSContinue (B)
18081808
</term>
18091809
<listitem>
18101810
<para>
1811-
Specifies that this message contains GSSAPI data.
1811+
Specifies that this message contains GSSAPI or SSPI data.
18121812
</para>
18131813
</listitem>
18141814
</varlistentry>
@@ -3514,7 +3514,10 @@ PasswordMessage (F)
35143514
<listitem>
35153515
<para>
35163516
Identifies the message as a password response. Note that
3517-
this is also used by GSSAPI response messages.
3517+
this is also used for GSSAPI and SSPI response messages
3518+
(which is really a design error, since the contained data
3519+
is not a null-terminated string in that case, but can be
3520+
arbitrary binary data).
35183521
</para>
35193522
</listitem>
35203523
</varlistentry>

0 commit comments

Comments
 (0)