Full Teardown fails - "user not permitted to log in" #153
Comments
|
The issue is here: https://github.com/Autodesk/pgbelt/blob/main/pgbelt/cmd/teardown.py#L90-L91 Those revokes need to be run by the schema owners of both databases (which have their logins revoked). ALTERs are idempotent so we could ALTER WITH LOGIN before those lines. Removing login again after those lines should depend on in revoke-logins was run in the first place. Maybe we can just ALTER WITH LOGIN for now, no need to really revoke that later anyways since teardown would occur well after the migration is complete. |
|
Wow I forgot we wrote a |
|
We can run the REVOKEs as admin, solves the issue much easier. |
vjeeva
added a commit
that referenced
this issue
Oct 6, 2023
vjeeva
added a commit
that referenced
this issue
Oct 6, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
The
teardown --fullfunction fails to run to completion because the command tries to run things on the source database with a user that has LOGIN revoked. This occurs after pgbelt is used for a migration, so users on the source DB have login revoked.To Reproduce
Steps to reproduce the behavior:
revoke-loginsto ensure traffic has stopped on the source database)teardown --full.Expected behavior
Must fully tear down replication, the extension, deleting the pglogical user, etc.
The text was updated successfully, but these errors were encountered: