Open PurseChicken opened 1 month ago
Hitting this issue as well. Please do not make assumptions without making it configurable.
@davinchia Can we get a fix for this? This broke the helm chart.
Edit: Why is it a bad assumption?
Hope that helps.
Hi everyone, thanks for the feedback, and sorry for the inconvenience.
Curious, why are folks setting this field? This doesn't do anything except enable Temporal SSL on the backend, and is more of an experimental flag we are testing internally. Unsetting this should fix this for everyone.
I didn’t set any flag, I think. It failed when I upgraded the helm chart version.
Hi everyone, thanks for the feedback, and sorry for the inconvenience.
Curious, why are folks setting this field? This doesn't do anything except enable Temporal SSL on the backend, and is more of an experimental flag we are testing internally. Unsetting this should fix this for everyone.
What field are you referring to? .Values.global.database.type?
The issue here is that if .Values.global.database.type is set to external, then automatically the Temporal deployment gets specific TLS environment variables applied which is causing issues. I believe most of us who are running into issues are using external databases and setting .Values.global.database.type to external.
Setting that flag to internal when actually using an external database does not seem like the right way to configure the charts values file. If thats the instruction, thats not an acceptable fix in my opinion. More like a workaround with other possible downstream affects. If not now, then in the future as that field may be referenced in other areas of the chart(s).
As mentioned in the OP, these environment variables for Temporal TLS should be controlled in the temporal section of the charts values file rather than setting them based on an assumption.
How was this solved? I am trying to use an external PostgreSQL database and having this notification of SSL.
sql schema version compatibility check failed: pq: SSL is not enabled on the server Unable to create server. Error: could not build arguments for function "go.uber.org/fx".(*module).constructCustomLogger.func2 (/go/pkg/mod/go.uber.org/fx@v1.20.0/module.go:251): failed to build fxevent.Logger: could not build arguments for function "go.temporal.io/server/temporal".init.func8 (/home/builder/temporal/temporal/fx.go:1029): failed to build log.Logger: received non-nil error from function "go.temporal.io/server/temporal".ServerOptionsProvider (/home/builder/temporal/temporal/fx.go:180): sql schema version compatibility check failed: pq: SSL is not enabled on the server.
For the moment I deploy the helm chart and manually edit the airbyte-temporal so the following envs are "false"
:
- name: POSTGRES_TLS_ENABLED
value: "false"
- name: SQL_TLS_ENABLED
value: "false"
If you're using something like kustomize you might be able to apply a patch to do this but the stack I have using Airbyte isn't set up that way. Hoping to see this issue fixed soon.
Helm Chart Version
0.399.0
What step the error happened?
On deploy
Relevant information
The Temporal Deployment manifest was changed to assume that TLS\SSL is needed if using an external Database:
This causes significant issues when using, for example, a sidecar Proxy which does not require TLS.
We should not be making an assumption here. In my opinion, there should be a key value pair in values which enables \ disables TLS\SSL if required in the deployment.
E.G.
Relevant log output