Remove radius from initdb authentication methods.

Commit a1643d40b removed RADIUS authentication, but apparently
overlooked initdb's list of accepted authentication methods.  As a
result, initdb still accepted radius for --auth, --auth-host, and
--auth-local, allowing it to create a pg_hba.conf that the server could
not load.

Remove radius from initdb's local and host authentication method lists.

Backpatch-through: 19
Author: Chao Li <lic@highgo.com>
Discussion: https://postgr.es/m/983F946B-A7CE-4C93-B5F0-665616F72254%40gmail.com
This commit is contained in:
Thomas Munro 2026-07-01 11:25:37 +12:00
parent 1de468099d
commit a78f7390bf

View file

@ -94,7 +94,7 @@ typedef struct _stringlist
} _stringlist;
static const char *const auth_methods_host[] = {
"trust", "reject", "scram-sha-256", "md5", "password", "ident", "radius",
"trust", "reject", "scram-sha-256", "md5", "password", "ident",
#ifdef ENABLE_GSS
"gss",
#endif
@ -116,7 +116,7 @@ static const char *const auth_methods_host[] = {
NULL
};
static const char *const auth_methods_local[] = {
"trust", "reject", "scram-sha-256", "md5", "password", "peer", "radius",
"trust", "reject", "scram-sha-256", "md5", "password", "peer",
#ifdef USE_PAM
"pam",
#endif