+- **SPA `POST /auth/api/credentials` regular-user path was returning bare `:5432`.** 0.10.26's SPA round-robin landed on the superadmin branch only — the regular-user branch in `dashboard.rs::generate_credentials` kept the pre-fix `host: state.pgwire_host.clone()` / `port: state.pgwire_port`, so every `user_*` cred handed to the SPA pointed at `app.boilstream.com:5432`, the gateway listener the chart had just removed. The two `Json(CredentialsResponse {…})` blocks differed only in indentation (12 spaces in the superadmin nested block, 8 spaces at the function tail), which is why the original `replace_all` Edit only matched one of them. Caught when matview_stress (which registers fresh regular users) failed `Connection refused (os error 61)` on Phase 2; the existing staging guard authenticates as superadmin so it didn't see it. Added `auth::spa_credentials_distribution_test::test_spa_credentials_for_regular_user_returns_per_pod_port` to lock both paths down.
0 commit comments