Skip to content

[BUG][PERFORMANCE]: RBAC middleware holds DB sessions for entire request lifecycle causing pool exhaustion #2318

Closed
Bug
Closed
[BUG][PERFORMANCE]: RBAC middleware holds DB sessions for entire request lifecycle causing pool exhaustion#2318
Bug
Assignees
crivetimihai
Labels
bugSomething isn't workingdatabaseperformancePerformance related itemspythonPython / backend development (FastAPI)rbacRole-based Access Control
Milestone
Release 1.0.0-BETA-2
@crivetimihai

Description

@crivetimihai
crivetimihai
opened on Jan 22, 2026

Summary

The get_current_user_with_permissions() function acquires a database session via Depends(get_db) at request start and stores it in the returned user context dict. This session is held for the entire request lifecycle, including during slow async operations (MCP backend calls, template rendering, plugin hooks). Under high load, this causes "idle in transaction" connections to accumulate, leading to connection pool exhaustion and cascading failures.

Symptoms Under Load (4000 concurrent users)

Metric Before Failure During Failure
RPS 2000+ 280
Failure rate 0.1% 10.71%
Gateway health 3/3 healthy 1/3 healthy
Idle-in-transaction 40-50 433
Max transaction age 1-2s 243 seconds

Error Messages

QueuePool limit of size 20 overflow 10 reached, connection timed out, timeout 60.00
OperationalError: (psycopg.errors.ProtocolViolation) idle transaction timeout

Root Cause

The RBAC middleware holds database sessions for entire request lifetimes:

# mcpgateway/middleware/rbac.py
async def get_current_user_with_permissions(..., db: Session = Depends(get_db)):
    return {
        "db": db,  # Session stored in user context, held until request completes
    }

Session lifecycle:

  1. Request arrives → session acquired via Depends(get_db)
  2. Permission check runs (fast, ~10ms)
  3. Session stays open during: slow backend calls (1-30s), template rendering
  4. Session released only when request completes
  5. Under load: sessions accumulate in "idle in transaction" state
  6. Pool exhaustion: new requests timeout waiting for connections

Proposed Solution

  1. Remove db from get_current_user_with_permissions() return value
  2. Update permission decorators to use fresh_db_session() for short-lived permission checks
  3. Sessions released immediately after permission check, before slow operations

Files Affected

  • mcpgateway/middleware/rbac.py - Core fix
  • mcpgateway/admin.py - Remove user["db"] reference
  • Test fixtures - Remove "db" from mock user contexts

Testing

  • Unit tests: Verify permission decorators use fresh sessions
  • Integration tests: Verify permission checks still work
  • Load tests: Verify stable idle-in-transaction count under 4000 users

Metadata

Metadata

Assignees

Labels

bugSomething isn't workingdatabaseperformancePerformance related itemspythonPython / backend development (FastAPI)rbacRole-based Access Control

Type

Bug

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions