rust/neon
1
0
Fork 0
mirror of https://github.com/neondatabase/neon.git synced 2026-01-08 05:52:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,282 Commits 1,487 Branches 282 Tags
iddm/postgres-continuous-profiling-endpoint
Commit Graph

6 Commits

Author SHA1 Message Date
Conrad Ludgate
58327ef74d [proxy] fix sql-over-http password setting (#12177) 
## Problem

Looks like our sql-over-http tests get to rely on "trust"
authentication, so the path that made sure the authkeys data was set was
never being hit.

## Summary of changes

Slight refactor to WakeComputeBackends, as well as making sure auth keys
are propagated. Fix tests to ensure passwords are tested.
 2025-06-10 08:46:29 +00:00
Alexander Bayandin
30a7dd630c ruff: enable TC — flake8-type-checking (#11368) 
## Problem

`TYPE_CHECKING` is used inconsistently across Python tests.

## Summary of changes
- Update `ruff`: 0.7.0 -> 0.11.2
- Enable TC (flake8-type-checking):
https://docs.astral.sh/ruff/rules/#flake8-type-checking-tc
- (auto)fix all new issues
 2025-03-30 18:58:33 +00:00
Fedor Dikarev
8f651f9582 switch from localtest.me to local.neon.build (#10714) 
## Problem
Ref: https://github.com/neondatabase/neon/issues/10632

We use dns named `*.localtest.me` in our test, and that domain is
well-known and widely used for that, with all the records there resolve
to the localhost, both IPv4 and IPv6: `127.0.0.1` and `::1`

In some cases on our runners these addresses resolves only to `IPv6`,
and so components fail to connect when runner doesn't have `IPv6`
address. We suspect issue in systemd-resolved here
(https://github.com/systemd/systemd/issues/17745)
To workaround that and improve test stability, we introduced our own
domain `*.local.neon.build` with IPv4 address `127.0.0.1` only

See full details and troubleshoot log in referred issue.

p.s.
If you're FritzBox user, don't forget to add that domain
`local.neon.build` to the `DNS Rebind Protection` section under `Home
Network -> Network -> Network Settings`, otherwise FritzBox will block
addresses, resolving to the local addresses.
For other devices/vendors, please check corresponding documentation, if
resolving `local.neon.build` will produce empty answer for you.

## Summary of changes
Replace all the occurrences of `localtest.me` with `local.neon.build`
 2025-02-07 12:25:16 +00:00
Tristan Partin
5bd8e2363a Enable all pyupgrade checks in ruff 
This will help to keep us from using deprecated Python features going
forward.

Signed-off-by: Tristan Partin <tristan@neon.tech>
 2024-10-08 14:32:26 -05:00
Conrad Ludgate
60e5a56a5a proxy: include client IP in ip deny message (#6854) 
## Problem

Debugging IP deny errors is difficult for our users

## Summary of changes

Include the client IP in the deny message
 2024-02-21 18:24:59 +01:00
Anna Khanova
e12e2681e9 IP allowlist on the proxy side (#5906) 
## Problem

Per-project IP allowlist:
https://github.com/neondatabase/cloud/issues/8116

## Summary of changes

Implemented IP filtering on the proxy side. 

To retrieve ip allowlist for all scenarios, added `get_auth_info` call
to the control plane for:
* sql-over-http
* password_hack
* cleartext_hack

Added cache with ttl for sql-over-http path

This might slow down a bit, consider using redis in the future.

---------

Co-authored-by: Conrad Ludgate <conrad@neon.tech>
 2023-11-30 13:14:33 +00:00