pgo update user
pgo update user
Update a PostgreSQL user
Synopsis
Allows the ability to perform various user management functions for PostgreSQL users.
For example:
//change a password, set valid days for 40 days from now pgo update user mycluster –username=someuser –password=foo //expire password for a user pgo update user mycluster –username=someuser –expire-user //Update all passwords older than the number of days specified pgo update user mycluster –expired=45 –password-length=8
Disable the ability for a user to log into the PostgreSQL cluster
pgo update user mycluster –username=foobar –disable-login
Enable the ability for a user to log into the PostgreSQL cluster
pgo update user mycluster –username=foobar –enable-login
pgo update user [flags]
Options
--all all clusters.
--disable-login Disables a PostgreSQL user from being able to log into the PostgreSQL cluster.
--enable-login Enables a PostgreSQL user to be able to log into the PostgreSQL cluster.
--expire-user Performs expiring a user if set to true.
--expired int Updates passwords that will expire in X days using an autogenerated password.
-h, --help help for user
-o, --output string The output format. Supported types are: "json"
--password string Specifies the user password when updating a user password or creating a new user. If --rotate-password is set as well, --password takes precedence.
--password-length int If no password is supplied, sets the length of the automatically generated password. Defaults to the value set on the server.
--password-type string The type of password hashing to use.Choices are: (md5, scram-sha-256). This only takes effect if the password is being changed. (default "md5")
--rotate-password Rotates the user's password with an automatically generated password. The length of the password is determine by either --password-length or the value set on the server, in that order.
-s, --selector string The selector to use for cluster filtering.
--username string Updates the postgres user on selective clusters.
--valid-always Sets a password to never expire based on expiration time. Takes precedence over --valid-days
--valid-days int Sets the number of days that a password is valid. Defaults to the server value.
Options inherited from parent commands
--apiserver-url string The URL for the PostgreSQL Operator apiserver that will process the request from the pgo client.
--debug Enable additional output for debugging.
--disable-tls Disable TLS authentication to the Postgres Operator.
--exclude-os-trust Exclude CA certs from OS default trust store
-n, --namespace string The namespace to use for pgo requests.
--pgo-ca-cert string The CA Certificate file path for authenticating to the PostgreSQL Operator apiserver.
--pgo-client-cert string The Client Certificate file path for authenticating to the PostgreSQL Operator apiserver.
--pgo-client-key string The Client Key file path for authenticating to the PostgreSQL Operator apiserver.
SEE ALSO
- pgo update - Update a pgouser, pgorole, or cluster