I follow this tutorial about how to configure SSL/TLS for MySQL.
When I set
require_secure_transport = ON in
/etc/mysql/my.cnf and create user using
For all shinyapps.io IPs 22.214.171.124, 126.96.36.199, 188.8.131.52
mysql > CREATE USER 'shinyuser'@'184.108.40.206' IDENTIFIED BY 'password' REQUIRE SSL;
I get this error in shiny logs:
Failed to connect to database: Error: Access denied for user 'shinyuser'@'ec2-54-204-36-75.compute-1.amazonaws.com' (using password: YES)
However, If I don't use
REQUIRE SSL and I bind
require_secure_transport = ON, I can connect successfully.
So, I have few questions:
1- Is it possible to connect from shinyapps.io securely, and if yes ... How?
2- Is it OK to connect from shinyapps.io without
require_secure_transport = ON, i.e. In a normal way "from a security point of view".
PS: I generate the SSL/TLS certificates and keys using
sudo mysql_ssl_rsa_setup --uid=mysql. Also, I can connect from client-server using
require_secure_transport = ON and without publishing the public key and certificates to that client-server.
Thanks in advance for your kind help