pgAdmin OIDC SSO

How a DBA logs into pgAdmin via Olympus IAM

Role mapping

The Kratos identity's dba_role trait (e.g. olympus_readonly, olympus_app_admin) becomes the Postgres role pgAdmin connects as. See Security, pgAdmin DBA accounts and ADR 0016.

Offboarding

Deactivating the IAM identity → next pgAdmin login fails → DBA can't connect. See Operate, pgAdmin DBA offboarding.

Where to learn more

Security, pgAdmin SSO
Security, pgAdmin DBA accounts
ADR 0016, pgAdmin DBA role mapping

Encryption key rotation (zero-downtime)

How ENCRYPTION_KEY is rotated without losing access to encrypted settings

Claude-driven Daedalus deploy via MCP

How an agent drives the wizard end-to-end

pgAdmin OIDC SSO

Role mapping

Offboarding

Where to learn more

On this page