From 720a9cc0e55b3b2a5136cf59f339ddd7a627599c Mon Sep 17 00:00:00 2001
From: Bruce Momjian <bruce@momjian.us>
Date: Sat, 24 Mar 2007 21:46:25 +0000
Subject: [PATCH] Document that LDAP URLs should be double-quoted in
 pg_hba.conf because commas are often present in the URL.

Backpatch to 8.2.X.
---
 doc/src/sgml/client-auth.sgml | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/doc/src/sgml/client-auth.sgml b/doc/src/sgml/client-auth.sgml
index 4b7c2c47093..b5245e753ff 100644
--- a/doc/src/sgml/client-auth.sgml
+++ b/doc/src/sgml/client-auth.sgml
@@ -1,4 +1,4 @@
-<!-- $PostgreSQL: pgsql/doc/src/sgml/client-auth.sgml,v 1.96 2006/11/23 05:39:17 momjian Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/client-auth.sgml,v 1.96.2.1 2007/03/24 21:46:25 momjian Exp $ -->
 
 <chapter id="client-authentication">
  <title>Client Authentication</title>
@@ -929,9 +929,13 @@ omicron       bryanh            guest1
     <synopsis>
 ldap[<replaceable>s</>]://<replaceable>servername</>[:<replaceable>port</>]/<replaceable>base dn</replaceable>[;<replaceable>prefix</>[;<replaceable>suffix</>]]
     </synopsis>
-    for example:
+    Commas are used to specify multiple items in an <literal>ldap</>
+    component.  However, because unquoted commas are treated as item
+    separators in <filename>pg_hba.conf</filename>, it is wise to
+    double-quote the <literal>ldap</> URL to preserve any commas present,
+    e.g.:
     <synopsis>
-ldap://ldap.example.net/dc=example,dc=net;EXAMPLE\
+"ldap://ldap.example.net/dc=example,dc=net;EXAMPLE\"
     </synopsis>
 
    </para>