ned wrote: It''s easier than you think. When you turn on \&quot;Enhanced Authentication\&quot; for a user, that user still connects via the PostBooks application with what he thinks is his regular username and password. And you can control the application privileges on a user-by-user basis, in a very detailed way (http://www.xtuple.com/docs/userguide/system35.php#917430).
What Enhanced Authentication does is hash the password for any other connections to the database, such as the pgAdmin scenario you described. You don''t have to mess with the source code at all. -- Read more at http://www.xtuple.org/phpBB2/viewtopic.php?t=1422