You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We're using Goose with an Amazon Aurora (MySQL) instance with IAM authentication. We need to enable TLS in order for the clearText / IAM token authentication to work. If I try adding &tls=skip-verify this gets cleared by the normalizeMySQLDSN function in the driver.
We worked around this for ourselves by just patching the call to dsn = tlsReg.ReplaceAllString(...) but it would be nice if this was officially supported. I wonder if it would work to simply move this to inside the if tls statement, but I admit I don't quite understand the purpose of this code in the first place so this is pure speculation on my part.
Thanks for your time and for this really cool project!
The text was updated successfully, but these errors were encountered:
Tbh I don't know why we're hard coding the tls config to custom instead of leaving the parsing to mysql.ParseDSN, not sure if @Songmu is around and/or remembers. I suspect instead of goose setting the tls config to "custom", the user could set this in their dsn, like &tls=custom ?
Either way, this looks like a bug in how we parse tls value and we should fix it.
mfridman
changed the title
Allow TLS options in MySQL driver such as "skip-verify"
mysql: allow TLS options in MySQL driver such as "skip-verify"
Jan 31, 2023
Hi,
We're using Goose with an Amazon Aurora (MySQL) instance with IAM authentication. We need to enable TLS in order for the clearText / IAM token authentication to work. If I try adding
&tls=skip-verify
this gets cleared by thenormalizeMySQLDSN
function in the driver.We worked around this for ourselves by just patching the call to
dsn = tlsReg.ReplaceAllString(...)
but it would be nice if this was officially supported. I wonder if it would work to simply move this to inside theif tls
statement, but I admit I don't quite understand the purpose of this code in the first place so this is pure speculation on my part.Thanks for your time and for this really cool project!
The text was updated successfully, but these errors were encountered: