Add note about deprecating krb5 authentication in favour of GSSAPI,

per discussions (a long time ago). Documentation only, we keep full support in the code.
18 years ago · 9394059261
parent 144c519842
commit 9394059261
1 changed files with 10 additions and 1 deletions
--- a/doc/src/sgml/client-auth.sgml
+++ b/doc/src/sgml/client-auth.sgml
@ -1,4 +1,4 @@
-<!-- $PostgreSQL: pgsql/doc/src/sgml/client-auth.sgml,v 1.103 2007/11/09 23:52:08 momjian Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/client-auth.sgml,v 1.104 2007/11/14 14:25:55 mha Exp $ -->

 <chapter id="client-authentication">
 <title>Client Authentication</title>
@ -722,6 +722,15 @@ local   db1,db2,@demodbs  all                         md5
    <primary>Kerberos</primary>
   </indexterm>

+   <note>
+    <para>
+     Native Kerberos authentication has been deprecated and should be used
+     only for backward compatibility. New and upgraded installations are
+     encouraged to use the industry-standard <productname>GSSAPI</productname>
+     authentication (see <xref linkend="gssapi-auth">) instead.
+    </para>
+   </note>
+
   <para>
    <productname>Kerberos</productname> is an industry-standard secure
    authentication system suitable for distributed computing over a public