Components

a database proxy in jumpwire is comprised of several linked concepts a database configuration, a labeled schema, and authentication parameters collectively they comprise a single database proxy configuration each proxy is configured for a specific database external to jumpwire different databases may have slightly different configuration parameters the credentials provided for this configuration will be used for both setting up jumpwire (migrating data, creating column triggers, etc) and authenticating connections that are proxied through postgresql details for connecting to a postgresql database all fields in the table below are required connection field name description hostname the host of the postgresql server this hostname or ip address must be reachable by the engine components docid 6jbari9pcyga5o6rpf eh port the port that the postgresql server accepts connections on database the name of the postgresql database to connect to schema the name of the schema containing tables to list and describe username the username to use when connecting to the database server password a valid password to use when connecting to the database server enable ssl a toggle indicating whether ssl should be required when connecting to postgresql mysql details for connecting to a mysql database all fields in the table below are required connection field name description hostname the host of the mysql server this hostname or ip address must be reachable by the engine components docid 6jbari9pcyga5o6rpf eh port the port that the mysql server accepts connections on database the name of the mysql database/schema to connect to username the username to use when connecting to the database server password a valid password to use when connecting to the database server enable ssl a toggle indicating whether ssl should be required when connecting to mysql there are several known limitations specific to the mysql cli when connecting to jumpwire these limitations do not apply to other client libraries the password prompt will truncate entered text to 79 characters since the generated tokens are longer than that, the token must be specified as password=token and not through the interactive prompt with some versions of the mysql cli, authentication will only succeed when using ssl if you must connect to jumpwire without ssl we recommend using the mariadb cli as a drop in replacement, or a programmatic client library instead here is an example connecting to a locally running database schema as soon as the database configuration is saved, jumpwire will connect and list tables in the database each table is turned into a schema that can have individual fields labeled labels set on the schema are mapped against policies docid\ xepswd3fg htpks0zn7pn to determine whether to apply specific data handling rules for fields without any labels, no changes are made to the data as it flows through jumpwire the example below shows a table named users from the configured postgresql database two fields, last name and ssn , have been assigned the label pii proxy authentication the connection string consists of an identifier for this particular database, a token for authentication which maps to a specific classification, and the host and port of the jumpwire proxy this connection uri is the only change needed in your application configuration to start using jumpwire multiple unique tokens can be generated for each database configuration each connection token can be assigned a different classification to indicate which kinds of unmodified data it can receive