Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Option to avoid setting default_transaction_read_only when connecting to PostgreSQL? #966

Closed
JackDunnNZ opened this issue Jan 25, 2024 · 11 comments · Fixed by #968
Closed

Option to avoid setting default_transaction_read_only when connecting to PostgreSQL? #966

JackDunnNZ opened this issue Jan 25, 2024 · 11 comments · Fixed by #968

Comments

@JackDunnNZ
Copy link

I am trying to connect to a postgres instance on AWS RDS that sits behind an RDS Proxy. When I try to connect, I get the following error:

could not register providers: 
failed while creating connection pool: failed to connect to `host=localhost user=postgres database=postgres`: 
server error (FATAL: Feature not supported: RDS Proxy currently doesn’t support the option default_transaction_read_only. (SQLSTATE 0A000))

If I comment out the line that sets this parameter and build, everything works fine.

I am wondering if it might be possible to have a configurable override to avoid setting this parameter so that it's not necessary to patch and build from source to achieve this?
@ARolek
Copy link
Member

ARolek commented Jan 29, 2024

@JackDunnNZ well that's a bit annoying. Thanks for the report.

We don't currently have a way to config the default RuntimeConfig. The point of this config was to make tegola read only by default as it does not need to make any mutations to the database. Does RDSProxy support a similar query param, or do they just suggest using database roles for this type of control?

@JackDunnNZ
Copy link
Author

Thanks, it is super annoying that it doesn't support - I entirely agree the tegola config makes sense!

In certain configurations, RDS Proxy supports marking an entire endpoint as read-only, which provides some of this control. If I had to guess, because the purpose of the proxy is to pool and reuse connections across multiple client connections to the proxy, it cannot set global parameters like default_transaction_read_only on its own connections to the database on a case-by-case basis, since these connections are long-living and might be shared with the next user of the proxy.

@ARolek
Copy link
Member

ARolek commented Jan 29, 2024

@JackDunnNZ

In certain configurations, RDS Proxy supports marking an entire endpoint as read-only, which provides some of this control. If I had to guess, because the purpose of the proxy is to pool and reuse connections across multiple client connections to the proxy, it cannot set global parameters like default_transaction_read_only on its own connections to the database on a case-by-case basis, since these connections are long-living and might be shared with the next user of the proxy.

I see, yes that would be a direct conflict with the current approach.

Maybe we add a new config option to omit the default runtime params. The main downside in your situation would be the loss of setting the application name on the connection, which I think is really helpful. Looking at the pgx PraseConfig docs it appears the package "ParseConfig closely matches the parsing behavior of libpq". Looking at the libpq docs, 34.1.1. Connection Strings, it appears the param application_name is supported.

Could you do some additional investigation to see if this is a viable solution when working with the RDS Proxy?

@JackDunnNZ
Copy link
Author

Could you do some additional investigation to see if this is a viable solution when working with the RDS Proxy?

Sure, happy to. I didn't follow from the message, what exactly would you like me test?

@ARolek
Copy link
Member

ARolek commented Jan 30, 2024

@JackDunnNZ I'm hoping you can investigate what query params RDS Proxy supports. I suspect they have a whitelist documented somewhere.

@JackDunnNZ
Copy link
Author

@ARolek Got it, looks like that whitelist is here: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/rds-proxy-setup.html#rds-proxy-connecting-postgresql

@ARolek
Copy link
Member

ARolek commented Jan 31, 2024

@JackDunnNZ thanks! so it looks like application_name is supported, so I think we can plumb through this config change. Would you want to take a pass at making the code change?

@JackDunnNZ
Copy link
Author

@ARolek Normally I would be happy to, but I don't know a single thing about go, so I think it would be better for someone else to handle it sorry.

@ARolek
Copy link
Member

ARolek commented Feb 1, 2024

@JackDunnNZ fair enough ;-).

iwpnd added a commit to iwpnd/tegola that referenced this issue Feb 17, 2024
@iwpnd
feat: allow dbconfig options
6258da4 
application_name and default_transaction_read_only to be configurable

Closes: go-spatial#966
@iwpnd iwpnd mentioned this issue Feb 17, 2024
Merged
@iwpnd
Copy link
Member

iwpnd commented Feb 17, 2024
edited
Loading

i gave it a shot and made both application_name and default_transaction_read_only configurable in the provider.

You can either set default_transaction_read_only:"OFF" and it would omit the option from the runtime params of the connection, the option itself can be omitted from the tegola config and we'd resort to the previous default of "TRUE" or it can be set to "FALSE".

while i can test that the runtime params are correctly set, i cannot test their effect. any chance you can checkout my PR, test and let me know? @JackDunnNZ

@JackDunnNZ
Copy link
Author

Works perfectly on my end, thanks @iwpnd !

iwpnd added a commit to iwpnd/tegola that referenced this issue Feb 24, 2024
@iwpnd
feat: allow dbconfig options
a2a3049 
application_name and default_transaction_read_only to be configurable

Closes: go-spatial#966

fix: compare default_transaction_read_only with uppercase

chore: use const for runtime param keys, update readme
ARolek pushed a commit to iwpnd/tegola that referenced this issue Feb 27, 2024
@iwpnd @ARolek
feat: allow dbconfig options
ef1023c 
application_name and default_transaction_read_only to be configurable

Closes: go-spatial#966

fix: compare default_transaction_read_only with uppercase

chore: use const for runtime param keys, update readme
ARolek pushed a commit that referenced this issue Feb 27, 2024
@iwpnd @ARolek
feat: allow dbconfig options
e84707c 
application_name and default_transaction_read_only to be configurable

Closes: #966

fix: compare default_transaction_read_only with uppercase

chore: use const for runtime param keys, update readme
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: allow dbconfig options iwpnd/tegola
3 participants
@ARolek @JackDunnNZ @iwpnd