@roji
Thank you for taking the time to have a look at this.

This PR makes it possible for Npgsql to react to multiple authentication requests just the same as psql and pgAdmin.

As far as I understand, PgPool-II requires this two-step authentication because PgPool-II, which doesn't necessarily have information of the user that a client is trying to connect as, needs to authenticate PgPool-II itself to the backend PostgreSQL servers and authenticate the client on behalf of the actual PostgreSQL servers behind the PgPool-II.
With the first authentication request (cleartext), PgPool-II gets the user-password mapping, which will be used to set up connections to the possibly multiple PostgreSQL backends. Then PgPool-II needs to authenticate a client connecting to the PgPool-II, thus requesting another authentication.
This whole process seems unintuitive but considering that PgPool-II has the connection pooling feature, it makes sense that it needs to do so.

Also, note that this is explicitly against the PostgreSQL protocol docs, which state the following:

For all authentication methods except GSSAPI, SSPI and SASL, there is at most one request and one response.

So PgPool-II seems to be violating the PostgreSQL protocol on this point.

I'm not sure about the interpretation of the cited text but the implementation of the official PostgreSQL client, libpq, does allow multiple authentication requests to occur. (ref: After sending authentication information to the server, it checks if the returned message is AuthenticationOk [L3621]. If it is not, it goes back to the beginning of the loop [L3635], which makes it possible to react to the second authentication request.)
So this PR will align the behavior of Npgsql with the behavior of libpq (psql, pgAdmin, and etc).

Thanks for the additional information @yoshihikoueno. I think it's fine for us to do this.

Backported to 7.0.4 via ca43399