Flitch
Integrations

MariaDB

Connect a MariaDB database with a connection string or client certificate (MySQL wire protocol).

Reads tables from any MariaDB database. MariaDB speaks the MySQL wire protocol, so it connects exactly like MySQL. Queries run inside a read-only transaction, so Flitch can never write to your database.

Add a source

MariaDB supports two auth methods: a connection string (a database user over TLS) and a client certificate (mTLS).

Prerequisites

  • A reachable MariaDB host and database.
  • A user with read access to the tables you want.

Create a read-only user

CREATE USER 'flitch_readonly'@'%' IDENTIFIED BY 'choose-a-strong-password';
GRANT SELECT ON mydb.* TO 'flitch_readonly'@'%';
FLUSH PRIVILEGES;

Build the connection string

mysql://flitch_readonly:password@your-host:3306/mydb?ssl-mode=REQUIRED

The mysql:// scheme is correct for MariaDB. Keep ssl-mode=REQUIRED for a TLS-enabled server; use ssl-mode=DISABLED for a server with no TLS.

Open the form

Go to DataAddMariaDB, paste the connection string, then pick datasets.

Issue a client certificate

Generate an X.509 client certificate and key signed by a CA your server trusts, and create the user with REQUIRE X509 so the server enforces it.

Open the form

Go to DataAddMariaDB, pick Client Certificate (mTLS), and paste the CA certificate, client certificate, and client key.

Pick datasets

Test the connection, then tick the tables.

Network access

Flitch connects from its own server, not your browser, so if your database is behind a firewall or VPC security group you must allow Flitch's connector egress IP (shown in the Add Source form) on the database port, not your own IP. Publicly reachable hosts need no change.

Team-wide credential (optional)

A team admin can store one shared MariaDB credential in Settings → Data connections; new connections then default to it, with no per-connection secret.

Refresh

Refresh is off by default. Enable it to schedule a background refresh and serve from cache between runs. See Refresh.

Troubleshooting

Authentication failed. Check the user and password, and that it can connect from Flitch's host ('flitch_readonly'@'%').

Connection timed out / refused. Verify host and port, and that the egress IP is allowlisted.

Server does not support secure connection. The server has no TLS. Use ssl-mode=DISABLED.

MySQL

Connect a MySQL database (self-hosted, RDS, Cloud SQL, Azure, or Aurora) with a connection string or client certificate.

SQL Server

Connect a Microsoft SQL Server database (self-hosted, RDS, or Managed Instance) with a connection string.

On this page

Add a sourcePrerequisitesCreate a read-only userBuild the connection stringOpen the formIssue a client certificateOpen the formPick datasetsNetwork accessTeam-wide credential (optional)RefreshTroubleshooting