if I remember correctly, the mysql database offered by railway does not come with certificates

Are certificates unusable on mysql dbs? Or can I bring my own, if they're not providing any?

"We currently do not support external SSL certificates since we provision one for you."

that's true for postgres, but not for mysql

you could provide a mysql image that comes with certificates, but for mysql it's not natively provided

though having a certificate would not matter as long as you connect to the database exclusively over the private network, it's private for a reason!

Huh. That does makes sense, now doesn't it. Let me try it

projects running locally will not be able to access the private network, correct? So i'll have to disable ssl when working locally

correct

worked like a charm. that's pretty cool.

I'm worried about running stuff locally, however. I connect to my production db locally sometimes. Won't it be exposed to man-in-the-middle attacks in that case?

you could not connection to your production database publicly, instead have another railway environment running a development database.
if you need to manage the production database, do that through dbgate

thats what i do, the app on railway connects to the database privately, and the database itself has the tcp proxy removed, thus cutting off public access.
then database is managed with dbgate deployed into the same project.

sorry, i'm not sure I understand how to connect locally to the dbGate app, or how to connect the dbGate app to my db on the same project

open the domain it generates

oh damn!

username and password are in the service variables

sorry yeah, i got excited and started playing around

haha railway is pretty exciting

pretty cool that you made that template

thanks so much man! finally done with this migration 🙌

awesome!

I like templates 🙂