Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PostgreSQL multiple hosts configuration and database cluster failover #7247

Closed
lenaing opened this issue Aug 5, 2019 · 6 comments
Closed

PostgreSQL multiple hosts configuration and database cluster failover #7247

lenaing opened this issue Aug 5, 2019 · 6 comments
Labels
enhancement secret/database storage/postgresql

Comments

@lenaing
Copy link

lenaing commented Aug 5, 2019

The current library used for the physical PostgresSQL backend is lib/pq.
However, this library does not :

To reproduce :

  1. Configure vault to use postgresql as backend and use multiple hosts in connection string, and enable target_session_attrs parameter (Cf C libpq parameters keywords)
  2. Start Vault
  3. Vault does not start, see error.

Vault Config excerpt :

...
"postgresql": {
      "connection_url": "postgresql://user:password@host1.example.com:5432,host2.example.com:5432/vault_database?sslmode=disable&target_session_attrs=read-write",
      "table": "vault_kv_store",
      "ha_enabled": "true"
}
...

Results :

Error initializing storage of type postgresql: failed to check for native upsert: dial tcp: lookup host1.example.com:5432,host2.example.com:5432: no such host
Error initializing storage of type postgresql: failed to check for native upsert: pq: unrecognized configuration parameter "target_session_attrs"

A stale PR has been opened to solve these issues but it seems it won't be merged on this project : lib/pq#714

The pgx project seems to have merged this kind of handling here : jackc/pgx#545

Expected behavior :

It would be nice to support multiple hosts in connection string and target session attributes so that on connection lost Vault would reconnect automatically, enable one to have a database cluster that can failover.

Environment :

  • Vault version : 1.2.0
  • Operating System / Architecture :
    • CentOS Servers / PostgresSQL 10 Cluster

Regards,
@innovationhub-asia
Copy link

Any plan to resolve this? Otherwise it's hard to use Postgres as a backend in production environments.

@cpoule23
Copy link

Hello, +1. Today, the switch of postgres database need to cut the service, time to allow write access on the failover DB.

@KaymeKaydex
Copy link

Any plan to resolve this? Otherwise it's hard to use Postgres as a backend in production environments.

lets use pgx

@caniko
Copy link

caniko commented Mar 31, 2022
edited
Loading

It makes more sense to implement multiple hosts support and RW/RO connection selector support rather than what is proposed by the OP (limited to failover).

Looking forward to this implementation. Vault will hog the master node of our postgres cluster in production for now.

@fairclothjm
Copy link
Contributor

As of Vault 1.11 we are using pgx. See #15343

@lenaing Can you confirm that this resolves this issue for you?

@lenaing
Copy link
Author

lenaing commented Jun 16, 2023

Hi, sorry for the delay.

I do not have two databases anymore to test this, but I believe that we can close the issue as pgx does handle multiple hosts configuration and target selection.

Thanks !

@markphelps markphelps mentioned this issue Apr 12, 2024
Closed
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement secret/database storage/postgresql
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
9 participants
@chrishoffman @lenaing @michelvocks @fairclothjm @innovationhub-asia @caniko @cpoule23 @KaymeKaydex @heatherezell