POSTGRES_HOST_AUTH_METHOD not working as documented on 14.4

[cap10morgan]

The documentation on POSTGRES_HOST_AUTH_METHOD says that specifying a value for the POSTGRES_HOST_AUTH_METHOD env var will add a host all all all $POSTGRES_HOST_AUTH_METHOD line to the pg_hba.conf file in the container. It also says, "If unspecified then scram-sha-256 password authentication is used (in 14+; md5 in older releases)."

Neither of these things happen in a newly-created 14.4 container. If I don't specify it, I don't get the expected host all all all scram-sha-256 line in the /var/lib/postgresql/data/pg_hba.conf file in the container, nor do I if I specify -e POSTGRES_HOST_AUTH_METHOD=scram-sha-256 in my docker run ... command. And I can't connect from another host (with the error that the host doesn't have an entry in pg_hba.conf).

UPDATE: Actually specifying it does work if its a newly-created pg_hba.conf. I had it in a volume so it wasn't modifying an existing file, which seems reasonable.

Am I misunderstanding something here?

[yosifkit]

UPDATE: Actually specifying it does work if its a newly-created pg_hba.conf. I had it in a volume so it wasn't modifying an existing file, which seems reasonable.

Correct, it only appends to pg_hba.conf when it is a newly initialized database.

postgres/docker-entrypoint.sh

Lines 310 to 318 in 623c004

	# only run initialization on an empty data directory
	if [ -z "$DATABASE_ALREADY_EXISTS" ]; then
	docker_verify_minimum_env
	# check dir permissions to reduce likelihood of half-initialized database
	ls /docker-entrypoint-initdb.d/ > /dev/null
	docker_init_database_dir
	pg_setup_hba_conf "$@"