Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <pgsql-hackers-owner+archive@lists.postgresql.org>)
	id 1vt4vv-001SYQ-15
	for pgsql-hackers@arkaria.postgresql.org;
	Thu, 19 Feb 2026 14:23:12 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.96)
	(envelope-from <pgsql-hackers-owner+archive@lists.postgresql.org>)
	id 1vt4vt-003lbA-1m
	for pgsql-hackers@arkaria.postgresql.org;
	Thu, 19 Feb 2026 14:23:09 +0000
Received: from makus.postgresql.org ([2001:4800:3e1:1::229])
	by malur.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <daniel@yesql.se>)
	id 1vt4vt-003lb2-0X
	for pgsql-hackers@lists.postgresql.org;
	Thu, 19 Feb 2026 14:23:09 +0000
Received: from smtp.outgoing.loopia.se ([93.188.3.37])
	by makus.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.98.2)
	(envelope-from <daniel@yesql.se>)
	id 1vt4vp-000000008yP-0X08
	for pgsql-hackers@postgresql.org;
	Thu, 19 Feb 2026 14:23:08 +0000
Received: from s807.loopia.se (localhost [127.0.0.1])
	by s807.loopia.se (Postfix) with ESMTP id 509C555CAE8
	for <pgsql-hackers@postgresql.org>; Thu, 19 Feb 2026 15:23:03 +0100 (CET)
Received: from s934.loopia.se (unknown [172.22.191.6])
	by s807.loopia.se (Postfix) with ESMTP id 3CD8755D4D6;
	Thu, 19 Feb 2026 15:23:03 +0100 (CET)
Received: from localhost (unknown [172.22.191.6])
	by s934.loopia.se (Postfix) with ESMTP id 393A37CEA86;
	Thu, 19 Feb 2026 15:23:03 +0100 (CET)
X-Virus-Scanned: amavis at amavis.loopia.se
X-Spam-Flag: NO
X-Spam-Score: -1.2
X-Spam-Level:
X-Spam-Status: No, score=-1.2 tagged_above=-999 required=6.2
 tests=[ALL_TRUSTED=-1, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,
 DKIM_VALID_EF=-0.1] autolearn=disabled
Authentication-Results: s898.loopia.se (amavis); dkim=pass (2048-bit key)
 header.d=yesql.se
Received: from s981.loopia.se ([172.22.191.5])
 by localhost (s898.loopia.se [172.22.190.17]) (amavis, port 10024)
 with UTF8LMTP id YsoLqepF-UXE; Thu, 19 Feb 2026 15:23:02 +0100 (CET)
X-Loopia-Auth: user
X-Loopia-User: daniel@yesql.se
X-Loopia-Originating-IP: 89.255.232.236
Received: from smtpclient.apple (customer-89-255-232-236.stosn.net [89.255.232.236])
	(Authenticated sender: daniel@yesql.se)
	by s981.loopia.se (Postfix) with ESMTPSA id 6B72E22B176E;
	Thu, 19 Feb 2026 15:23:02 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yesql.se;
	s=loopiadkim1707475645; t=1771510982;
	bh=QZyriFDiW5a3lO5/ZRwdW/sMZ67Mwx87qJbt9LQZ2yo=;
	h=Subject:From:In-Reply-To:Date:Cc:References:To;
	b=l6QDc2W0ElPEtsY04ri9moYp2XwQKiy+0HRhwe9kHLvF/8VkVkdKJsnl22OpgeEsb
	 UbFxbKSR27LhrUGW+I+OGOghxeijnunFoc8IidqGMI2N9nJU5J3YNMrJh5yBfCtCmm
	 XvU5L9L0JiaQR+0W36WZA2vP4S8946ZRMxiVIYaqDQDNWYclpQ48gPKxZwqI3YQpMf
	 SHhUbB0HwvOdHI4MAtJjKPSxlsUF3LMGggZYv2gY+m/QuhoccSgjQlJwvvQcjE1OIQ
	 k4jROXo3pa5N9BlcSnrKWhkEYKc3zxznrhJD6Et5CmFk87cW+lGLxr6iA+tPrI5B+I
	 hP9AGNaJn8BQw==
Content-Type: text/plain;
	charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51.11.2\))
Subject: Re: Make PGOAUTHCAFILE in libpq-oauth work out of debug mode
From: Daniel Gustafsson <daniel@yesql.se>
In-Reply-To: <2373b0487573c9f780590709881ecc84e965abcc.camel@gmail.com>
Date: Thu, 19 Feb 2026 15:22:52 +0100
Cc: Jacob Champion <jacob.champion@enterprisedb.com>,
 Zsolt Parragi <zsolt.parragi@percona.com>,
 PostgreSQL Hackers <pgsql-hackers@postgresql.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <9850AB21-78A7-43CD-94C6-FA8E3BC9F1B3@yesql.se>
References: <16a91d02795cb991963326a902afa764e4d721db.camel@gmail.com>
 <3D82D240-1CC5-4CE6-BE30-6065B693D40C@yesql.se>
 <CAOYmi+=fbZNJSkHVci=GpR8XPYObK=H+2ERRha0LDTS+ifsWnw@mail.gmail.com>
 <CAN4CZFPhm2NCRWzZpX=kRLqyxu4Ps-d0xE5W75a-iDoKrLbXBw@mail.gmail.com>
 <CAOYmi+=HcXJub1rDsQ7vpKMHuBB6NTA2Z5T=zAkaFdRThf+9zg@mail.gmail.com>
 <b08bf613bba131eaf15ac163d84604db452d4fde.camel@gmail.com>
 <CAOYmi+mMx1DnNpKG8RdknH0-GuPR9jv+G9r2iFND=Yve7DOF6g@mail.gmail.com>
 <7a0464f0c05db689eb97ba963b212d477d03f5a3.camel@gmail.com>
 <CAOYmi+nQawWHzC4mRhJnzZzzqjnUDg-yxN3f3ZqPX=+jpKU+zg@mail.gmail.com>
 <711e10411f81a2f554fec97b340b60abf5331c9a.camel@gmail.com>
 <CAOYmi+mTHahYXqBZH-bE1Z3Yc5SJ0gTHsM69LSVna2h7ftgVzQ@mail.gmail.com>
 <0eb07ab7217fe6da36ab0f96fad8a644982871b2.camel@gmail.com>
 <CAOYmi+kNGJXy3YqPDoceb1doNfA-S6fmdKv-AH3j0PPUicyUQQ@mail.gmail.com>
 <2373b0487573c9f780590709881ecc84e965abcc.camel@gmail.com>
To: "Jonathan Gonzalez V." <jonathan.abdiel@gmail.com>
X-Mailer: Apple Mail (2.3776.700.51.11.2)
List-Id: <pgsql-hackers.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-hackers@lists.postgresql.org>
List-Owner: <mailto:pgsql-hackers-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-hackers>
Archived-At: <https://www.postgresql.org/message-id/9850AB21-78A7-43CD-94C6-FA8E3BC9F1B3%40yesql.se>
Precedence: bulk

> On 19 Feb 2026, at 15:18, Jonathan Gonzalez V. =
<jonathan.abdiel@gmail.com> wrote:

> Ok, so probably a new patch to teach oauth_server.py to speak HTTPS
> could be good? Since it requires to create certificates and lot of
> testing work a different patch could be better right? just to add =
HTTPS
> support.

+1, that work should be considered on its own as it has value =
independent of
the rest of this patchset.

--
Daniel Gustafsson