Password authentication methods help keep your database safe by checking if users provide the right password before they can connect.
METHOD = 'password' | 'md5' | 'scram-sha-256' | 'peer' | 'ident' | 'trust' | ...
This syntax is used in the pg_hba.conf file to set authentication methods.
Common password methods are password, md5, and scram-sha-256.
host all all 0.0.0.0/0 md5
host all all 192.168.1.0/24 scram-sha-256
local all all peer
This example sets the password authentication method to SCRAM-SHA-256 for all users connecting from any IP address. After editing pg_hba.conf, you reload the configuration to apply changes.
# In pg_hba.conf file host all all 0.0.0.0/0 scram-sha-256 -- Then reload PostgreSQL configuration SELECT pg_reload_conf();
MD5 is older and less secure than SCRAM-SHA-256, which is recommended for new setups.
Always reload or restart PostgreSQL after changing authentication methods in pg_hba.conf.
Using trust means no password is needed, which is unsafe for production.
Password authentication methods protect your database by requiring users to prove their identity.
Common methods include md5 and scram-sha-256, with SCRAM being more secure.
Set these methods in pg_hba.conf and reload PostgreSQL to apply changes.