Neil
09/01/2023, 8:59 PMdagster-webserver
and dagster-daemon
pods are able to authenticate I believe, but the pods fail with an insufficient privileges error like so:
(psycopg2.errors.InsufficientPrivilege) permission denied for schema public:
CREATE TABLE secondary_indexes (
^
[SQL:CREATE TABLE secondary_indexes (
id BIGSERIAL NOT NULL,
name VARCHAR(512),
create_timestamp TIMESTAMP WITHOUT TIME ZONE DEFAULT CURRENT_TIMESTAMP,
migration_completed TIMESTAMP WITHOUT TIME ZONE,
PRIMARY KEY (id),
UNIQUE (name)
)
Now, I gave the dagster user on Postgres ownership on the dagster
database it's connected to , and I can create that darn dagster.public.secondary_indexes
table myself when I log on to RDS as the dagster user. Does anyone know what's going on? Where is it trying to make this table?Neil
09/01/2023, 9:00 PMdaniel
09/01/2023, 9:08 PMNeil
09/01/2023, 9:11 PMdagster
database and user, and give the user ownership on the dagster
database. I'm able to create the table with the same SQL myself if I connect manually to RDS, so I don't understand why dagster can't unless it's trying to make it in another database aside from the one I told it aboutdaniel
09/01/2023, 9:11 PMdaniel
09/01/2023, 9:11 PMdaniel
09/01/2023, 9:12 PMNeil
09/01/2023, 9:13 PMdaniel
09/01/2023, 9:16 PMfrom dagster import DagsterInstance
DagsterInstance.get()
What dagster does is uses sqlalchemy to create the tables using the postgres user / credentials that you set in the Helm chart. Are you sure you're using the same postgres schema and db when running the commands locally that you have configured in the helm cahrt?Neil
09/01/2023, 9:21 PMNeil
09/01/2023, 9:21 PMNeil
09/01/2023, 9:24 PMNeil
09/01/2023, 9:25 PMdatabase
parameter I sent or it's defaulting to the postgres
database or somethingdaniel
09/01/2023, 9:26 PMdaniel
09/01/2023, 9:28 PMNeil
09/01/2023, 9:30 PMglobal:
postgresqlSecretName: "dagster-postgresql-rds-secret"
postgresql:
enabled: false
postgresqlHost: "<http://blahblahblah.rds.amazonaws.com|blahblahblah.rds.amazonaws.com>"
postgresqlUsername: "dagster"
postgresqlDatabase: "dagster"
generatePostgresqlPasswordSecret: false
daniel
09/01/2023, 9:31 PMdaniel
09/01/2023, 9:34 PMNeil
09/01/2023, 9:36 PMGRANT USAGE, CREATE *ON* SCHEMA *PUBLIC*
*TO* dagster;
daniel
09/01/2023, 9:36 PMNeil
09/01/2023, 9:36 PMNeil
09/01/2023, 9:36 PMNeil
09/01/2023, 9:37 PMdagster.public
myself as the dagster
user but I won't complain now that it's working