-
Notifications
You must be signed in to change notification settings - Fork 474
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PgBouncer fails with Azure PostgreSQL #412
Comments
This issue is caused by Azure PostgreSQL NOT supporting For now, if you are using the chart with a PostgreSQL that doesn't support MD5 (like Azure PostgreSQL), you should disable pgbouncer by setting |
I have also found that while using Azure PostgreSQL, you must set This is similar to what people raised in the PgBouncer issue tracker: pgbouncer/pgbouncer#284 |
Therefore, once we add pgbouncer:
# WARNING: value does not exist as of chart `8.5.2`
authType: scram-sha-256
serverSSL:
mode: verify-ca |
Hello @thesuperzapper , |
@minnieshi your best bet is to use the Azure PostgreSQL - Flexible Server (Preview), as this is a much more standard Postgress deployment, and works perfectly by default. (NOTE: it's also MUCH more performant than the legacy Azure PostgreSQL) If you really need to use the legacy Azure PostrgresSQL - Single Server, then you will need to either raise a PR for the chart that closes #419, or wait for me to do it. (Or you could just not use PgBouncer) |
hello @thesuperzapper ,
how can i check what auth_type does Azure PostgreSQL 11 support? I found just by trying one by one, pam works in terms of installing cradlepoint pgbouncer chart. |
@minnieshi But why are you not using the embedded PgBouncer, it makes it so much easier because we generated the |
Because we are using azure postgresql and this issue is still open. |
We use single server offering from Azure with airflow pgbouncer. This is the config generated by helm (I replaced hostname with ***):
I only have to manually change to |
Hi @george-zubrienko,
|
@minnieshi Hmm I just realized that we actually use a different helm chart - the one provided from apache. I found the solution to pgbouncer issue in this repo though :) We use 1.1.0 version and deploy it via terraform. This is a part of
Important things here:
After the chart is deployed by TF, I have to edit the secret it creates called
If you want I can share our TF project, hope I won't get fired for it :) |
That is clear @george-zubrienko Thanks a lot. |
@george-zubrienko @minnieshi in my testing, the only change needed to use pgbouncer with Azure Postgress (on this chart) is to update templates/pgbouncer/_helpers/pgbouncer.tpl#L21 to This can be easily achieved by adding a new NOTE: I have only been delaying doing this because I want the next minor release of the chart to support airflow 2.2.0 (it works already, but we need to add the new "deferable tasks" deployment (see issue: #424) |
Thank you very much @thesuperzapper. My brain did not "click"(but now it seems obvious) until you said the above. The cause was I didn't know helm well. I had been always using https://helm.sh/docs/helm/helm_install/ I did not know there are 5 ways to install a chart, and below approach is what I need to do to get to what you described!!
In short the solution to my problem could be restated as "instead of installing from the added repo, just clone, edit the local cloned one. |
Update for those using TF, in
fixes the problem. |
@minnieshi @george-zubrienko @TAMQuiroz as version pgbouncer:
authType: scram-sha-256
serverSSL:
mode: verify-ca Also, we now have a I would really appreciate if someone could test Azure PostgreSQL, and confirm that there is no longer an issue. |
What is the bug?
I'm experimenting with the 8.5.2 chart version and when I'm installing with Pgbouncer feature disabled, everything works as usual but activating Pgbouncer flag on values.yaml, I get an error on the airflow-pgbouncer pod liveness probe:
Liveness probe failed: psql: error: ERROR: password authentication failed for user "[USERNAME]"
I'm using Azure for Postgres, and the username has an @ in the middle of the value but the log only shows the value before the @. I'm guessing this is why the auth is failing.
This is a continuation of issue #394
What version of the chart are you using?:
I am using version
8.5.2
What is your Kubernetes Version?:
What is your Helm version?:
Please copy your custom Helm values file:
I'm using the default Pgbouncer config from the repo with the following change:
Thank you!
The text was updated successfully, but these errors were encountered: