fix(trino-driver): Use SSL options in testConnection#11217
Conversation
testConnection() issued its GET /v1/info probe via node-fetch without passing the TLS material the driver already resolves from CUBEJS_DB_SSL_* env vars (BaseDriver.getSslOptions). Queries through presto-client honored those options, but the connection test fell back to node-fetch defaults (system CA store, rejectUnauthorized: true) and failed against clusters with custom CAs, self-signed certs, or mTLS.
|
Claude finished @ovr's task in 45s —— View job Code ReviewVerdict: Looks good — fix is well-scoped, correct, and tested. No blocking issues. Details
What the PR doesWires the already-resolved Correctness ✅
Minor observations (non-blocking)
Tests ✅
Security ✅No new attack surface. The change lets operators actually honor |
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## master #11217 +/- ##
=======================================
Coverage 59.35% 59.35%
=======================================
Files 215 215
Lines 17456 17456
Branches 3539 3539
=======================================
Hits 10361 10361
Misses 6589 6589
Partials 506 506
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
testConnection() issued its GET /v1/info probe via node-fetch without passing the TLS material the driver already resolves from CUBEJS_DB_SSL_* env vars (BaseDriver.getSslOptions). Queries through presto-client honored those options, but the connection test fell back to node-fetch defaults (system CA store, rejectUnauthorized: true) and failed against clusters with custom CAs, self-signed certs, or mTLS.