<div dir="ltr"><div dir="ltr"><br><br><div class="gmail_quote"><div dir="ltr">On Sun, Nov 18, 2018 at 5:59 AM Tatsuo Ishii &lt;<a href="mailto:ishii@sraoss.co.jp">ishii@sraoss.co.jp</a>&gt; wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Usama,<br>
<br>
&gt; Hi<br>
&gt; <br>
&gt; I have created a simple docker based example of using CERT authentication<br>
&gt; with Pgpool-II frontend connections  for the reference.<br>
&gt; <br>
&gt; Please have a look and let me know what you think<br>
&gt; <br>
&gt; <a href="https://github.com/codeforall/pgpool_cert_auth" rel="noreferrer" target="_blank">https://github.com/codeforall/pgpool_cert_auth</a><br>
<br>
Unfortunately it does not work for me.<br>
<br>
docker exec -it clientnode sudo -u postgres psql &quot;sslmode=require port=9999 host=172.22.0.52 dbname=postgres user=certuser&quot; -c &quot;show pool_nodes&quot;<br>
psql: server does not support SSL, but SSL was required<br>
<br></blockquote><div><br></div><div>This is very strange, I have rebuild the dockers by pulling the fresh code from repo and can run the test successfully.</div><div>Seems like setting of ssl configuration is failing.</div><div><br></div><div>can you please help me identify the issue by sending the log of &quot;docker-compose up &quot; and of the output of following commands </div><div><br></div><div><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span style="font-variant-ligatures:no-common-ligatures">docker exec -it pgmaster</span><span class="gmail-Apple-converted-space" style="font-variant-ligatures:no-common-ligatures">  </span><span style="font-variant-ligatures:no-common-ligatures">/bin/bash -c &#39;cat $PGDATA/postgresql.conf&#39;</span><br></p><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span class="gmail-s1" style="font-variant-ligatures:no-common-ligatures">docker exec -it pgmaster<span class="gmail-Apple-converted-space">  </span>/bin/bash -c &#39;cd $PGDATA/log &amp;&amp; cat &quot;$(ls -1rt<span class="gmail-Apple-converted-space">  </span>| tail -n1)&quot;&#39;</span></p><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span class="gmail-s1" style="font-variant-ligatures:no-common-ligatures"><br></span></p><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span class="gmail-s1" style="font-variant-ligatures:no-common-ligatures">docker exec -it pgslave<span class="gmail-Apple-converted-space">  </span>/bin/bash -c &#39;cat $PGDATA/postgresql.conf&#39;</span></p><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span class="gmail-s1" style="font-variant-ligatures:no-common-ligatures">docker exec -it pgslave<span class="gmail-Apple-converted-space">  </span>/bin/bash -c &#39;cd $PGDATA/log &amp;&amp; cat &quot;$(ls -1rt<span class="gmail-Apple-converted-space">  </span>| tail -n1)&quot;&#39;</span></p><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span class="gmail-s1" style="font-variant-ligatures:no-common-ligatures"><br></span></p><p class="gmail-p1" style="font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:Menlo;margin:0px;color:rgb(0,0,0)"><span class="gmail-s1" style="font-variant-ligatures:no-common-ligatures">docker exec -it pgpoolnode<span class="gmail-Apple-converted-space">  </span>/bin/bash -c &#39;cat </span><span style="font-variant-ligatures:no-common-ligatures">${PGPOOLCONF}/pgpool.conf&#39;</span></p><br class="gmail-Apple-interchange-newline"></div><div> <br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
Also I noticed you do not use Pgpool-II RPMs provided by Pgpool-II community:<br>
<a href="https://pgpool.net/mediawiki/index.php/Yum_Repository" rel="noreferrer" target="_blank">https://pgpool.net/mediawiki/index.php/Yum_Repository</a><br>
<br>
Is there any reason for this?<br>
<br></blockquote><div>No reason as such, I just installed the Pgpool rpms from same repo from where I was getting the PG server.</div><div>I have update the docker files to use the pgpool community rpms instead.</div><div><br></div><div><a href="https://github.com/codeforall/pgpool_cert_auth/commit/218f7536330677597552330199d0fd637f88d5b0">https://github.com/codeforall/pgpool_cert_auth/commit/218f7536330677597552330199d0fd637f88d5b0</a><br></div><div><br></div><div>Thanks</div><div>Best Regards</div><div>Muhammad Usama</div><br class="gmail-Apple-interchange-newline"><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
Best regards,<br>
--<br>
Tatsuo Ishii<br>
SRA OSS, Inc. Japan<br>
English: <a href="http://www.sraoss.co.jp/index_en.php" rel="noreferrer" target="_blank">http://www.sraoss.co.jp/index_en.php</a><br>
Japanese:<a href="http://www.sraoss.co.jp" rel="noreferrer" target="_blank">http://www.sraoss.co.jp</a><br>
</blockquote></div></div></div>