Skip to content

Platform Chart changes to Temporal Deployment causing TLS issues. #43328

New issue
New issue
Open
airbytehq/airbyte-platform
#361
Open
Platform Chart changes to Temporal Deployment causing TLS issues.#43328
airbytehq/airbyte-platform
#361
Labels
area/platformissues related to the platformcommunityteam/deploymentstype/bugSomething isn't working
@PurseChicken

Description

@PurseChicken
PurseChicken
opened on Aug 6, 2024

Helm Chart Version

0.399.0

What step the error happened?

On deploy

Relevant information

The Temporal Deployment manifest was changed to assume that TLS\SSL is needed if using an external Database:

        {{- if eq .Values.global.database.type "external" }}
        # Assume an external database requires SSL.
          - name: POSTGRES_TLS_ENABLED
            value: "true"
          - name: POSTGRES_TLS_DISABLE_HOST_VERIFICATION
            value: "true"
          - name: SQL_TLS_ENABLED
            value: "true"
          - name: SQL_TLS_DISABLE_HOST_VERIFICATION
            value: "true"
        {{- end }}

This causes significant issues when using, for example, a sidecar Proxy which does not require TLS.

We should not be making an assumption here. In my opinion, there should be a key value pair in values which enables \ disables TLS\SSL if required in the deployment.

E.G.

temporal:
  enabled: true
  externalSSL: false

Relevant log output

[Fx] Error returned: received non-nil error from function "go.temporal.io/server/temporal".ServerOptionsProvider
	/home/builder/temporal/temporal/fx.go:180:
sql schema version compatibility check failed: pq: SSL is not enabled on the server

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/platformissues related to the platformcommunityteam/deploymentstype/bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions