Gitlab CE remote postgres ssl_mode -
i'm trying set gitlab omnibus remote postgresql database. connection between gitlab , postgres should encrypted i'm having trouble configuration.
gitlab_rails['db_adapter'] = "postgresql" gitlab_rails['db_encoding'] = "utf8" gitlab_rails['db_collation'] = nil gitlab_rails['db_database'] = "gitlabhq_production" gitlab_rails['db_pool'] = 10 gitlab_rails['db_username'] = "gitlab" gitlab_rails['db_password'] = "mypassword" gitlab_rails['db_host'] = "db.example.com" gitlab_rails['db_port'] = 5432 # gitlab_rails['db_socket'] = nil # gitlab_rails['db_sslmode'] = nil gitlab_rails['db_sslrootcert'] = "/usr/local/share/ca-certificates/cacert-class3.crt" gitlab_rails['db_prepared_statements'] = true gitlab_rails['db_statements_limit'] = 1000 with configuration gilab-ctl reconfigure fails with:
pg::connectionbad: ssl error: certificate verify failed fatal: no pg_hba.conf entry host "my_ip", user "gitlab", database "gitlabhq_production", ssl off i'm bit lost here , couldn't find documentation available options db_sslmode suspect misconfigured. found verify-full, don't want have certificates in 2 places, long it's signed should sufficient. can connect database when running psql manually.
are there other options set?
okay, searching in rake issues found out missing keyword require.
besides seems better idea point sslrootcert /etc/ssl/certs/ca-certificates.crt
Comments
Post a Comment