How to connect via SSL to an AWS RDS instance?
according to AWS for a secure connection (so that all data transeferred between an client and a server) the following is needed according to this documentation: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/PostgreSQL.Concepts.General.SSL.html
1. The server Certificate that can be found here: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL.html
2. and then setting the option on the connection to
sslmode=verify-ca or sslmode=verify-full
now when i download the file (eu-central-1-bundle.pem) and i store that in my code next to the prisma.schema file, i should be able to connect to the database with the following options on my connection string:
sslmode=require&sslaccept=strict&sslrootcert=./eu-central-1-bundle.pem
however, I get an error SSL routines:tls_post_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1889: (self-signed certificate in certificate chain)
what else needs to be done to get that working?Using SSL with a PostgreSQL DB instance - Amazon Relational Databas...
Use SSL with an RDS for PostgreSQL DB instance.
Using SSL/TLS to encrypt a connection to a DB instance or cluster -...
Create encrypted connections to your Amazon RDS database using SSL/TLS.
2 Replies
You're in no rush, so we'll let a dev step in. Enjoy your coffee, or drop into
#ask-ai if you get antsy for a second opinion!Just to confirm, did you try to follow these instructions as well?
https://www.prisma.io/docs/orm/overview/databases/postgresql#configuring-an-ssl-connection
Also, I was able to find this related issue:
https://github.com/prisma/prisma/issues/20921
Does recommendation from the issue help?
GitHub
Problems with new AWS RDS CAs · Issue #20921 · prisma/prisma
Bug description AWS this year has released new CAs that are meant to last a century or something, essentially, if you are running an app with prisma, and that app points to an RDS instance with one...
PostgreSQL database connector | Prisma Documentation
This page explains how Prisma can connect to a PostgreSQL database using the PostgreSQL database connector.