</entry>

</row>

<row>

<entry><structfield>rolreplication</structfield></entry>

<entry><type>bool</type></entry>

<entry>

Role is a replication role. That is, this role can initiate streaming

replication (see <xref linkend="streaming-replication">) and set/unset

the system backup mode using <function>pg_start_backup</> and

<function>pg_stop_backup</>.

</entry>

</row>

<row>

<entry><structfield>rolconnlimit</structfield></entry>

<entry><type>int4</type></entry>

<literal><function>pg_start_backup(<parameter>label</> <type>text</> <optional>, <parameter>fast</> <type>boolean</> </optional>)</function></literal>

</entry>

<entry><type>text</type></entry>

<entry>Prepare for performing on-line backup (restricted to superusers)</entry>

<entry>Prepare for performing on-line backup (restricted to superusers or replication roles)</entry>

</row>

<row>

<entry>

<literal><function>pg_stop_backup()</function></literal>

</entry>

<entry><type>text</type></entry>

<entry>Finish performing on-line backup (restricted to superusers)</entry>

<entry>Finish performing on-line backup (restricted to superusers or replication roles)</entry>

</row>

<row>

<entry>

<para>

If you want to use streaming replication, set up authentication on the

primary server to allow replication connections from the standby

server(s); that is, provide a suitable entry or entries in

<filename>pg_hba.conf</> with the database field set to

server(s); that is,create a role andprovide a suitable entry or

entries in<filename>pg_hba.conf</> with the database field set to

<literal>replication</>. Also ensure <varname>max_wal_senders</> is set

to a sufficiently large value in the configuration file of the primary

server.

It is very important that the access privileges for replication be set up

so that only trusted users can read the WAL stream, because it is

easy to extract privileged information from it. Standby servers must

authenticate to the primary as a superuser account.

So a role with the <literal>SUPERUSER</> and <literal>LOGIN</>

privileges needs to be created on the primary.

authenticate to the primary as an account that has the

<literal>REPLICATION</> privilege. So a role with the

<literal>REPLICATION</> and <literal>LOGIN</> privileges needs to be

created on the primary.

</para>

<note>

<para>

It is recommended that a dedicated user account is used for replication.

While it is possible to add the <literal>REPLICATION</> privilege to

a superuser account for the purporses of replication, this is not

recommended. While <literal>REPLICATION</> privilege gives very high

permissions, it does not allow the user to modify any data on the

primary system, which the <literal>SUPERUSER</> privilege does.

</para>

</note>

<para>

Client authentication for replication is controlled by a

<filename>pg_hba.conf</> record specifying <literal>replication</> in the

<replaceable>database</> field. For example, if the standby is running on

host IP <literal>192.168.1.100</> and thesuperuser's name for replication

host IP <literal>192.168.1.100</> and theaccount name for replication

is <literal>foo</>, the administrator can add the following line to the

<filename>pg_hba.conf</> file on the primary:

standby (specify <literal>replication</> in the <replaceable>database</>

field).

For example, if the primary is running on host IP <literal>192.168.1.50</>,

port <literal>5432</literal>, thesuperuser's name for replication is

port <literal>5432</literal>, theaccount name for replication is

<literal>foo</>, and the password is <literal>foopass</>, the administrator

can add the following line to the <filename>recovery.conf</> file on the

standby:

| CREATEUSER | NOCREATEUSER

| INHERIT | NOINHERIT

| LOGIN | NOLOGIN

| REPLICATION | NOREPLICATION

| CONNECTION LIMIT <replaceable class="PARAMETER">connlimit</replaceable>

| [ ENCRYPTED | UNENCRYPTED ] PASSWORD '<replaceable class="PARAMETER">password</replaceable>'

| VALID UNTIL '<replaceable class="PARAMETER">timestamp</replaceable>'

Attributes not mentioned in the command retain their previous settings.

Database superusers can change any of these settings for any role.

Roles having <literal>CREATEROLE</> privilege can change any of these

settings, but only for non-superuser roles.

settings, but only for non-superuserand non-replicationroles.

Ordinary roles can only change their own password.

</para>

<term><literal>NOINHERIT</literal></term>

<term><literal>LOGIN</literal></term>

<term><literal>NOLOGIN</literal></term>

<term><literal>REPLICATION</literal></term>

<term><literal>NOREPLICATION</literal></term>

<term><literal>CONNECTION LIMIT</literal> <replaceable class="parameter">connlimit</replaceable></term>

<term><literal>PASSWORD</> <replaceable class="parameter">password</replaceable></term>

<term><literal>ENCRYPTED</></term>

| CREATEUSER | NOCREATEUSER

| INHERIT | NOINHERIT

| LOGIN | NOLOGIN

| REPLICATION | NOREPLICATION

| CONNECTION LIMIT <replaceable class="PARAMETER">connlimit</replaceable>

| [ ENCRYPTED | UNENCRYPTED ] PASSWORD '<replaceable class="PARAMETER">password</replaceable>'

| VALID UNTIL '<replaceable class="PARAMETER">timestamp</replaceable>'

| CREATEUSER | NOCREATEUSER

| INHERIT | NOINHERIT

| LOGIN | NOLOGIN

| REPLICATION | NOREPLICATION

| CONNECTION LIMIT <replaceable class="PARAMETER">connlimit</replaceable>

| [ ENCRYPTED | UNENCRYPTED ] PASSWORD '<replaceable class="PARAMETER">password</replaceable>'

| VALID UNTIL '<replaceable class="PARAMETER">timestamp</replaceable>'

</listitem>

</varlistentry>

<varlistentry>

<term><literal>REPLICATION</literal></term>

<term><literal>NOREPLICATION</literal></term>

<listitem>

<para>

These clauses determine whether a role is allowed to initiate

streaming replication or put the system in and out of backup mode.

A role having the <literal>REPLICATION</> attribute is a very

highly privileged role, and should only be used on roles actually

used for replication. If not specified,

<literal>NOREPLICATION</literal> is the default.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term><literal>CONNECTION LIMIT</literal> <replaceable class="parameter">connlimit</replaceable></term>

<listitem>

| CREATEUSER | NOCREATEUSER

| INHERIT | NOINHERIT

| LOGIN | NOLOGIN

| REPLICATION | NOREPLICATION

| CONNECTION LIMIT <replaceable class="PARAMETER">connlimit</replaceable>

| [ ENCRYPTED | UNENCRYPTED ] PASSWORD '<replaceable class="PARAMETER">password</replaceable>'

| VALID UNTIL '<replaceable class="PARAMETER">timestamp</replaceable>'

structstatstat_buf;

FILE*fp;

if (!superuser())

if (!superuser()&& !is_authenticated_user_replication_role())

ereport(ERROR,

(errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),

errmsg("must be superuser to run a backup")));

errmsg("must be superuseror replication roleto run a backup")));

if (RecoveryInProgress())

ereport(ERROR,

intwaits=0;

boolreported_waiting= false;

if (!superuser())

if (!superuser()&& !is_authenticated_user_replication_role())

ereport(ERROR,

(errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),

(errmsg("must be superuser to run a backup"))));

(errmsg("must be superuseror replication roleto run a backup"))));

if (RecoveryInProgress())

ereport(ERROR,

rolcreatedb,

rolcatupdate,

rolcanlogin,

rolreplication,

rolconnlimit,

'********'::textas rolpassword,

rolvaliduntil,

rolcreatedbAS usecreatedb,

rolsuperAS usesuper,

rolcatupdateAS usecatupd,

rolreplicationAS userepl,

rolpasswordAS passwd,

rolvaliduntil::abstimeAS valuntil,

setconfigAS useconfig

usecreatedb,

usesuper,

usecatupd,

userepl,

'********'::textas passwd,

valuntil,

useconfig

boolcreaterole= false;/* Can this user create roles? */

boolcreatedb= false;/* Can the user create databases? */

boolcanlogin= false;/* Can this user login? */

boolisreplication= false;/* Is this a replication role? */

intconnlimit=-1;/* maximum connections allowed */

List*addroleto=NIL;/* roles to make this a member of */

List*rolemembers=NIL;/* roles to be members of this role */

DefElem*dcreaterole=NULL;

DefElem*dcreatedb=NULL;

DefElem*dcanlogin=NULL;

DefElem*disreplication=NULL;

DefElem*dconnlimit=NULL;

DefElem*daddroleto=NULL;

DefElem*drolemembers=NULL;

errmsg("conflicting or redundant options")));

dcanlogin=defel;

}

elseif (strcmp(defel->defname,"isreplication")==0)

{

if (disreplication)

ereport(ERROR,

(errcode(ERRCODE_SYNTAX_ERROR),

errmsg("conflicting or redundant options")));

disreplication=defel;

}

elseif (strcmp(defel->defname,"connectionlimit")==0)

{

if (dconnlimit)

createdb=intVal(dcreatedb->arg)!=0;

if (dcanlogin)

canlogin=intVal(dcanlogin->arg)!=0;

if (disreplication)

isreplication=intVal(disreplication->arg)!=0;

if (dconnlimit)

{

connlimit=intVal(dconnlimit->arg);

(errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),

errmsg("must be superuser to create superusers")));

}

elseif (isreplication)

{

if (!superuser())

ereport(ERROR,

(errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),

errmsg("must be superuser to create replication users")));

}

{

if (!have_createrole_privilege())

new_record[Anum_pg_authid_rolcatupdate-1]=BoolGetDatum(issuper);

new_record[Anum_pg_authid_rolcanlogin-1]=BoolGetDatum(canlogin);

new_record[Anum_pg_authid_rolreplication-1]=BoolGetDatum(isreplication);

new_record[Anum_pg_authid_rolconnlimit-1]=Int32GetDatum(connlimit);

if (password)

intcreaterole=-1;/* Can this user create roles? */

intcreatedb=-1;/* Can the user create databases? */

intcanlogin=-1;/* Can this user login? */

intisreplication=-1;/* Is this a replication role? */

intconnlimit=-1;/* maximum connections allowed */

List*rolemembers=NIL;/* roles to be added/removed */

char*validUntil=NULL;/* time the login is valid until */

DefElem*dcreaterole=NULL;

DefElem*dcreatedb=NULL;

DefElem*dcanlogin=NULL;

DefElem*disreplication=NULL;

DefElem*dconnlimit=NULL;

DefElem*drolemembers=NULL;

DefElem*dvalidUntil=NULL;

errmsg("conflicting or redundant options")));

dcanlogin=defel;

}

elseif (strcmp(defel->defname,"isreplication")==0)

{

if (disreplication)

ereport(ERROR,

(errcode(ERRCODE_SYNTAX_ERROR),

errmsg("conflicting or redundant options")));

disreplication=defel;

}

elseif (strcmp(defel->defname,"connectionlimit")==0)

{

if (dconnlimit)

createdb=intVal(dcreatedb->arg);

if (dcanlogin)

canlogin=intVal(dcanlogin->arg);

if (disreplication)

isreplication=intVal(disreplication->arg);

if (dconnlimit)

{

connlimit=intVal(dconnlimit->arg);

(errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),

errmsg("must be superuser to alter superusers")));

}

elseif (((Form_pg_authid)GETSTRUCT(tuple))->rolreplication||isreplication >=0)

{

if (!superuser())

ereport(ERROR,

(errcode(ERRCODE_INSUFFICIENT_PRIVILEGE),

errmsg("must be superuser to alter replication users")));

}

elseif (!have_createrole_privilege())

{

if (!(inherit<0&&

!dconnlimit&&

!rolemembers&&

!validUntil&&

new_record_repl[Anum_pg_authid_rolcanlogin-1]= true;

}

if (isreplication >=0)

{

new_record[Anum_pg_authid_rolreplication-1]=BoolGetDatum(isreplication>0);

new_record_repl[Anum_pg_authid_rolreplication-1]= true;

}

if (dconnlimit)

{

new_record[Anum_pg_authid_rolconnlimit-1]=Int32GetDatum(connlimit);