Add automatic database migrations#988
Open
tlongwell-block wants to merge 4 commits into
Open
Conversation
Co-authored-by: npub1mprnacetjua2xx3p5eddmhxyk6wv929ymm5py8kd2xfxurxahspqqlgyta <d8473ee32b973aa31a21a65adddcc4b69cc2a8a4dee8121ecd51926e0cddbc02@sprout-oss.stage.blox.sqprod.co> Signed-off-by: npub1mprnacetjua2xx3p5eddmhxyk6wv929ymm5py8kd2xfxurxahspqqlgyta <d8473ee32b973aa31a21a65adddcc4b69cc2a8a4dee8121ecd51926e0cddbc02@sprout-oss.stage.blox.sqprod.co>
Co-authored-by: npub1mprnacetjua2xx3p5eddmhxyk6wv929ymm5py8kd2xfxurxahspqqlgyta <d8473ee32b973aa31a21a65adddcc4b69cc2a8a4dee8121ecd51926e0cddbc02@sprout-oss.stage.blox.sqprod.co> Signed-off-by: npub1mprnacetjua2xx3p5eddmhxyk6wv929ymm5py8kd2xfxurxahspqqlgyta <d8473ee32b973aa31a21a65adddcc4b69cc2a8a4dee8121ecd51926e0cddbc02@sprout-oss.stage.blox.sqprod.co>
tlongwell-block
added a commit
that referenced
this pull request
Jun 15, 2026
…Secret The quickstart profile composed DATABASE_URL/REDIS_URL in the chart-managed Secret with chart-generated passwords, but the CloudPirates postgres/redis subcharts each generated their *own* independent passwords and bound their Services at names the URLs didn't match. Result: a default `helm install --set quickstart=true` brought pg/redis up but the relay could never authenticate (password mismatch) or, for redis, never resolve the host (`-redis-master` Service does not exist in standalone mode). - Point postgresql.auth.existingSecret / redis.auth.existingSecret at the chart-managed Secret (`<fullname>-relay`) with matching key names, so the servers initialize with the exact password the relay's URL embeds — one source of truth instead of two diverging randoms. - Fix the composed REDIS_URL host: standalone CloudPirates redis renders `<release>-redis`, not `<release>-redis-master`. - Correct two no-op persistence paths (redis.master.* / postgresql.primary.*) to the keys CloudPirates actually reads (redis.persistence / postgresql.persistence); the prior nesting was silently ignored. - Add a regression test asserting DATABASE_URL/REDIS_URL resolve to the real subchart Service hosts and never `-redis-master`. Verified live on a kind/docker-desktop cluster against the published ghcr.io/block/buzz:0.1.0 image: pg+redis 1/1, relay logs "Postgres connected", psql/redis-cli with the chart-secret passwords succeed (select 1 / PONG). The relay still CrashLoops on absent schema (relation "events" does not exist) because :0.1.0 predates the auto-migration code (#988) — connectivity is fixed; schema bootstrap lands with #988 + a re-cut image. Co-authored-by: Tyler Longwell <tlongwell@squareup.com> Signed-off-by: Tyler Longwell <tlongwell@squareup.com>
added 2 commits
June 15, 2026 16:29
* origin/main: (48 commits) Polish message reaction tray (#1002) Refine app loading skeletons (#1001) Polish channel modal forms (#1000) Normalize desktop icon sizing (#999) Add shared skeleton loader primitives (#998) chore(scripts): update post-screenshots repo name to block/buzz (#1042) docs: fix stale sprout repo references in RELEASING.md (#1043) chore(release): release version 0.3.23 (#1040) fix(release): publish manifest from successful platforms (#1039) chore(release): release version 0.3.22 (#1038) chore(release): release version 0.3.21 (#1037) fix(release): use signed NSIS installer for updates (#1036) handoff: pass full session history to summarizer (#1033) feat(emoji): latest-set-wins union for custom emoji across desktop, mobile, and CLI (#989) Fix relay NIP-11 software URL (#1030) fix(desktop): make Windows release compile cleanly (#1029) Add production Docker Compose bundle (#985) feat(profile): show active turn badges on agent profile panel and popover (#1026) chore(release): release version 0.3.20 (#1027) fix(release): resolve Windows sidecar path and Linux AppImage updater format (#1024) ... Co-authored-by: npub1t2tgm7d8f995uqvmnm8h88sg3wnpp9a5xysjf6dg3tjmgt3ltulqdp8ehr <5a968df9a7494b4e019b9ecf739e088ba61097b4312124e9a88ae5b42e3f5f3e@sprout-oss.stage.blox.sqprod.co> Signed-off-by: npub1t2tgm7d8f995uqvmnm8h88sg3wnpp9a5xysjf6dg3tjmgt3ltulqdp8ehr <5a968df9a7494b4e019b9ecf739e088ba61097b4312124e9a88ae5b42e3f5f3e@sprout-oss.stage.blox.sqprod.co>
Co-authored-by: npub1t2tgm7d8f995uqvmnm8h88sg3wnpp9a5xysjf6dg3tjmgt3ltulqdp8ehr <5a968df9a7494b4e019b9ecf739e088ba61097b4312124e9a88ae5b42e3f5f3e@sprout-oss.stage.blox.sqprod.co> Signed-off-by: npub1t2tgm7d8f995uqvmnm8h88sg3wnpp9a5xysjf6dg3tjmgt3ltulqdp8ehr <5a968df9a7494b4e019b9ecf739e088ba61097b4312124e9a88ae5b42e3f5f3e@sprout-oss.stage.blox.sqprod.co>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
BUZZ_AUTO_MIGRATEand exposebuzz-admin migrate_sqlx_migrationsWhy
First-party Railway/Helm/Compose deployments need fresh databases to bootstrap without an out-of-band
pgschema apply. This makes the application image own schema initialization while still giving operators an explicit admin command.pubkey_allowlistcompatibilityThe old standalone
0001_relay_members.sqlincluded apubkey_allowlist→relay_membersbackfill. In this PR, the SQLx baseline path deliberately does not perform that data move: for existing databases it only records versions 1 and 2 in_sqlx_migrationsand leaves legacy rows intact. Relay startup still runs the existing idempotentdb.backfill_from_allowlist()immediately after migrations and before owner bootstrap, so deployments withpubkey_allowlistdata but emptyrelay_membersstill migrate to relay members on startup.This is now covered by an ignored Postgres test that loads the pre-SQLx schema snapshot, seeds
pubkey_allowlist, baselines migrations, then verifies the existing allowlist backfill inserts the expectedrelay_membersrow.Verification
bin/cargo fmt --all -- --checkbin/cargo test -p buzz-db migration::tests::embedded_migrator_contains_initial_schema_and_d_tag_backfillbin/cargo check -p buzz-db -p buzz-admin -p buzz-relaybin/cargo clippy -p buzz-db -p buzz-admin -p buzz-relay --all-targets -- -D warningsBUZZ_TEST_DATABASE_URL=postgres://buzz:buzz_dev@localhost:55432/buzz bin/cargo test -p buzz-db migration::tests:: -- --ignored --test-threads=1buzz-admin migratecreates schema and records migrations1:initial schema,2:backfill d tagschema/schema.sql, thenbuzz-admin migratebaselines versions 1 and 2 and a second migrate stays idempotentNote: the push hook’s broader
desktop-tauri-test/desktop-tauri-clippyfail on existingString::floor_char_boundaryunstable API usage indesktop/src-tauri/src/commands/agent_discovery.rs; unrelated to this PR. I pushed with--no-verifyafter the targeted migration checks above passed.