Hello @everyone How can i use ssl=enable and provide ca certificate in spicedb connection uri for my sql managed instances ?

Yes, something like this should work:

postgresql://<user>:<pass>@<endpoint>:<port>/<db-name>?sslmode=verify-ca&sslrootcert=<path-to-cert>

its not working for mysql datastore

ah, sorry, mysql, my bad, missed that. According to the MySQL Go driver, this is done with the

tls

parameter: https://github.com/go-sql-driver/mysql?tab=readme-ov-file#tls So you'd the following query parameter to you MySQL URI:

<your_uri>?tls=skip-verify

This allows you to use TLS without validating the trust chain. Unfortunately it does not seem to support any means to provide a CA trust chain via the query parameters.

perfect thankyou very much let me try this

the please refer to the managed SQL service documentation. What service is it?

azure mysql service

https://learn.microsoft.com/en-us/azure/mysql/single-server/concepts-ssl-connection-security > Connection strings for various programming languages are shown in the Azure portal. Those connection strings include the required SSL parameters to connect to your database. In the Azure portal, select your server. Under the Settings heading, select the Connection strings. The SSL parameter varies based on the connector, for example "ssl=true" or "sslmode=require" or "sslmode=required" and other variations.

its not working , when I am trying to add these parameters after the connection string , its giving error the connection uri is not valid

have you tried

tls=true

?