Amazon RDS for PostgreSQL + CHION

Text-to-SQL for Amazon RDS PostgreSQL

Connect your Amazon RDS PostgreSQL instance to Chion and ask questions in plain English. Chion generates verified SQL, executes it read-only against your RDS endpoint, and renders interactive charts. Credentials are encrypted in vault — your RDS security group controls network access, and Chion enforces read-only at the SQL validator layer.

Example question & SQL

See what Chion generates from a plain-English question.

You ask

"Show me monthly revenue for the last 6 months"

Chion generates

SELECT
  date_trunc('month', created_at) AS month,
  SUM(amount) AS revenue
FROM orders
WHERE created_at >= now() - interval '6 months'
GROUP BY 1
ORDER BY 1;

Finding your Amazon RDS for PostgreSQL credentials

AWS Console → RDS → Databases → [your instance] → Connectivity & security

Field	Where to Find	Default
Server (Endpoint)	Connectivity & security tab → Endpoint	<instance>.<id>.<region>.rds.amazonaws.com
Port	Same tab, next to Endpoint	5432
Database	Configuration tab → DB name	postgres (or what you set at creation)
Schema	Not in console — default is public	public
User	Configuration tab → Master username	postgres (or what you set)
Password	Set at instance creation. Modify → change Master password to reset	(not retrievable)

Quick steps

1.Log in at console.aws.amazon.com/rds
2.Click Databases in the left sidebar
3.Click your PostgreSQL instance name
4.Connectivity & security tab → copy the Endpoint and Port
5.Configuration tab → note the DB name and Master username
6.Password is what you entered during creation (use Modify to reset if needed)

Open Amazon RDS for PostgreSQL console

Amazon RDS for PostgreSQL troubleshooting

Common issues and how to fix them.

Connection timeout — security group not open

Edit the security group associated with your RDS instance. Add an inbound rule allowing TCP on port 5432 from the Chion IP range (or 0.0.0.0/0 for initial testing). RDS instances in private subnets require a NAT gateway or VPN peering.

Master password forgotten

In the RDS console, select your instance → Modify → set a new Master password. The change applies immediately or during the next maintenance window depending on your selection.

Aurora vs RDS PostgreSQL compatibility

Aurora PostgreSQL-Compatible uses the same wire protocol. Point Chion at the Aurora reader endpoint for read-only workloads. The cluster endpoint works too but directs queries to the writer.

Your credentials are encrypted

All connection credentials are encrypted with AES-256-GCM and stored in an isolated vault. Chion connects with read-only permissions — no INSERT, UPDATE, or DELETE is ever possible. Row-level security policies are honored on every query.

Read our security model

Frequently asked questions

Common questions about using Chion with Amazon RDS for PostgreSQL.

Does Chion support Amazon Aurora PostgreSQL?

Yes. Aurora PostgreSQL-Compatible uses the same wire protocol as standard RDS PostgreSQL. Point Chion at the reader endpoint for optimal read-only performance.

Can I use IAM authentication with Chion?

Not currently. Chion uses standard PostgreSQL password authentication. Create a dedicated read-only role with a strong password.

Does Chion work with RDS Multi-AZ deployments?

Yes. Chion connects to the primary endpoint. During a failover, the endpoint DNS updates automatically and Chion reconnects on the next query.

Ready to connect your Amazon RDS for PostgreSQL database?

Open Chion, enter your credentials, and start asking questions in plain English.

Start your trial