From 470b5f2c369670af0c130194ffa47f7210b2e7c9 Mon Sep 17 00:00:00 2001
From: Gurjeet Singh <gurjeet@singh.im>
Date: Mon, 9 Oct 2023 21:38:06 -0700
Subject: [PATCH v5 6/9] Updated pg_authid catalog documentation

---
 doc/src/sgml/catalogs.sgml | 29 ++++++++++++++++++++++++++++-
 1 file changed, 28 insertions(+), 1 deletion(-)

diff --git a/doc/src/sgml/catalogs.sgml b/doc/src/sgml/catalogs.sgml
index 096ddab481..aae349fb15 100644
--- a/doc/src/sgml/catalogs.sgml
+++ b/doc/src/sgml/catalogs.sgml
@@ -1605,12 +1605,39 @@
        null if no expiration
       </para></entry>
      </row>
+
+     <row>
+      <entry role="catalog_table_entry"><para role="column_definition">
+       <structfield>rolsecondpassword</structfield> <type>text</type>
+      </para>
+      <para>
+       Second password (possibly encrypted); null if none. The format depends
+       on the form of encryption used.
+      </para></entry>
+     </row>
+
+     <row>
+      <entry role="catalog_table_entry"><para role="column_definition">
+       <structfield>rolsecondvaliduntil</structfield> <type>timestamptz</type>
+      </para>
+      <para>
+       Second password's expiry time (only used for password authentication);
+       null if no expiration
+      </para></entry>
+     </row>
     </tbody>
    </tgroup>
   </table>
 
+
+  <para>
+   <structfield>rolpassword</structfield> and <structfield>rolsecondpassword</structfield>
+   store either the unencrypted password, MD5 encrypted password, or
+   SCRAM-SHA-256 encrypted password.
+  </para>
+
   <para>
-   For an MD5 encrypted password, <structfield>rolpassword</structfield>
+   For an MD5 encrypted password, the
    column will begin with the string <literal>md5</literal> followed by a
    32-character hexadecimal MD5 hash. The MD5 hash will be of the user's
    password concatenated to their user name. For example, if user
-- 
2.25.1