This project has been adapted from PostgresClientKit, with the following changes:
- A fully asynchronous API, suitable for use in SwiftUI.
- The network backend now uses Apple’s Network Framework
- Channel binding support has been enabled.
- Uses Application-Layer Protocol Negotiation (ALPN) instead of plain-text SSL upgrade requests.
-
Fully concurrent, asynchronous API. Queries can execute off the main thread, essential in modern frameworks like SwiftUI. Query results are exposed as
AsyncSequences and server notifications can be subscribed to via anAsyncStream. -
Pure Swift with zero dependencies. SwiftPostgresClient implements the Postgres network protocol in Swift, so it does not require
libpq. -
Safe conversion between Postgres and Swift types. Type conversion is explicit and robust. Conversion errors are signaled, not masked. These were adapted from PostgresClientKit, providing additional Swift types for dates and times to address the impedance mismatch between Postgres types and Foundation
Date. -
SSL/TLS support. Encrypts the connection between SwiftPostgresClient and the Postgres server.
-
Channel binding support. A security feature for SCRAM-SHA-256 authentication over TLS, channel binding links the TLS session to the authentication exchange, protecting against man-in-the-middle (MitM) attacks.
This is a basic, but complete, example of how to connect to a PostgresSQL server, perform a SQL SELECT command, and process the resulting rows. It uses the weather table in the Postgres tutorial.
A SwiftUI app has been created which uses this example. This is Swift 6 compatible.
import SwiftPostgresClient
// Connect on the default port, returning a connection actor
let connection = try await Connection.connect(host: "localhost")
// Connect using TLS and SCRAM, enforcing channel binding
let credential: Credential = .scramSHA256(password: "welcome1", channelBindingPolicy: .required)
try await connection.authenticate(user: "bob", database: "postgres", credential: credential)
// Prepare a statement
let text = "SELECT city, temp_lo, temp_hi, prcp, date FROM weather WHERE city = $1;"
let statement = try await connection.prepareStatement(text: text)
// Bind the statement within a named portal.
let portal = try await statement.bind(parameterValues: ["San Francisco"])
// Obtain an AsyncSequence from the portal and iterate the results.
let cursor = try await portal.query()
for try await row in cursor {
let columns = row.columns
let city = try columns[0].string()
let tempLo = try columns[1].int()
let tempHi = try columns[2].int()
let prcp = try columns[3].optionalDouble()
let date = try columns[4].date()
print("""
\(city) on \(date): low: \(tempLo), high: \(tempHi), \
precipitation: \(String(describing: prcp))
""")
}
let rowCount = await cursor.rowCountOutput:
San Francisco on 1994-11-27: low: 46, high: 50, precipitation: Optional(0.25)
San Francisco on 1994-11-29: low: 43, high: 57, precipitation: Optional(0.0)
This is only relevant when using SCRAM-SHA-256 SASL authentication.
The channel binding policy can be configured as either:
preferred- If the server supports SCRAM-SHA-256-PLUS, the client will use channel binding. Otherwise, a warning is logged and the connection falls back to plain SCRAM-SHA-256.required- If the server does not support SCRAM-SHA-256-PLUS, an error is thrown and the connection fails.
.preferred mode, if the connection proceeds with plain SCRAM-SHA-256 (without -PLUS), it's important to verify that the server genuinely does not support SCRAM-SHA-256-PLUS. Otherwise, a protocol downgrade attack may be possible, where an attacker strips the -PLUS mechanism to force weaker authentication.
The default mode of connection is via TLS, however this can be bypassed if necessary, for example when running a proxy that handles TLS termination.
let connection = try await Connection.connect(
host: "localhost",
port: 5432,
useTLS: false
)- Swift 5.5 or later (PostgresClientKit uses Swift 5.5 structured concurrency)
This fork of PostgresClientKit is compatible with macOS and iOS. It has only been tested on Postgres 17.
cd <path-to-clone>
swift package clean
swift build
Set up a Postgres database for testing. This is a one-time process.
Retrieving Well-Known-Binary (WKB) from PostGIS:
// Use direct query mode to retrieve data as bytea
let cursor = try await connection.query("SELECT ST_AsBinary(ST_GeomFromText('LINESTRING(0 0, 10 10)'))")
for try await row in cursor {
let geomCol = try row.columns[0].byteA()
let data: Data = geomCol.data
// Parse the Well-Known-Binary (WKB)
}Note that currently all server output is received in text format. This particular use-case might benefit from requesting binary output at the bind stage when using extended query mode. This has not however been implemented yet. A future version may just make binary output the default, and perform all response parsing with the swift-binary-parsing library, however that comes with the tradeoff that it would be difficult to support direct and extended query mode.
SwiftPostgresClient is licensed under the Apache 2.0 license.
- Will Temperley (@willtemperley) current maintainer.
- David Pitfield (@pitfield) author of the original project PostgresClientKit.