I'm trying to set up Retool with a Postgres DB with SSL.
I'm stuck at this error when starting the Retool backend:
Error running database migrations: SequelizeConnectionError: Hostname/IP does not match certificate's altnames: Host: localhost. is not cert's CN: <redacted>
I've set up the container with these ENV variables as described in Environment Variables
... POSTGRES_HOST=10.x.x.x ... POSTGRES_SSL_ENABLED=true POSTGRES_CUSTOM_SSL_CERT_PATH=/var/data/certs POSTGRES_CUSTOM_SSL_CA_FILE_NAME=db-server-ca.pem POSTGRES_CUSTOM_SSL_KEY_FILE_NAME=local-client-key.pem POSTGRES_CUSTOM_SSL_CERT_FILE_NAME=local-client-cert.pem
I've also tested against a DB without SSL and I was able to use Retool successfully. I even added the SSL DB as a resource in the new installation and that worked fine .
I'd note here, that I only needed to provide the client cert and key when adding a resource. It did not ask for a CA. For some reason, I'm unable to get the install working with SSL.
Some env info:
- Cloud SQL Postgres DB w/ private IP & SSL
- Cloud Run container w/ Cloud SQL connections & VPC Connector enabled