這是我當前的配置:
postgresql.conf:
ssl = on
ssl_cert_file = '/etc/postgresql/12/main/fullchain.pem'
ssl_key_file = '/etc/postgresql/12/main/privkey.pem'
pg_hba.conf:
local all postgres peer
# TYPE DATABASE USER ADDRESS METHOD
# "local" is for Unix domain socket connections only
local all all peer
# IPv4 local connections:
host all all 127.0.0.1/32 md5
# IPv6 local connections:
host all all ::1/128 md5
# Allow replication connections from localhost, by a user with the
# replication privilege.
local replication all peer
host replication all 127.0.0.1/32 md5
host replication all ::1/128 md5
# IPv4 remote connections:
hostssl all all 0.0.0.0/0 md5
# IPv6 remote connections:
hostssl all all ::/0 md5
盡管如此,我的 Django 應用程式能夠遷移資料庫更改,無論 是否遷移,'OPTIONS': {'sslmode': 'require'}這不是我想要的。我希望 Postgresql 拒絕非 ssl 連接,但我不知道我在這里缺少什么。
PS:證書有效并由certbot.
uj5u.com熱心網友回復:
看起來還可以。要驗證您應該嘗試使用
'OPTIONS': {'sslmode': 'disable'}
它可能默認為,prefer因此它仍在使用 SSL 進行連接。
轉載請註明出處,本文鏈接:https://www.uj5u.com/shujuku/440194.html
標籤:django PostgreSQL ssl