AWS RDS Connection Logs Errors even though bundles still build #277
Description
When using the default credentials chain connecting to AWS RDS instance, the provider chain is correctly using the default provider chain and using the Web Identity Token. Then about every 15-120 minutes OCP will log either a Warning for failed bundle synchronization, or an error for "error listing bundles" - as far as I can tell OCP eventually grabs an existing connection or grabs a new token because new bundles continue to be built and uploaded - so not sure maybe if its just expected behavior and the app needs to more gracefully handle the new connections, or if there is an issue going on.
The RDS logs corroborate the failed connection with a PAM Auth error for the DB user followed by "failed to authenticated....token age is longer than 15 minutes"
DB config:
aws_rds:
database_name:
database_user:
driver: postgres
endpoint:
region:
Since the uptime on the oldest POD I have is 3 days, and it was still uploading bundles as of today, it seems that some connection is still alive. Checking that same POD for Warnings and errors over the past 24 hours it logged a connection wanting or error about 50 times (different bundles at different times)
Let me know if you need anything else from me.
Thanks!
Jeremy