Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow user to specify postgresql.auth.password keys etc. #5

Open
ilyannn opened this issue Jan 6, 2024 · 0 comments
Open

Allow user to specify postgresql.auth.password keys etc. #5

ilyannn opened this issue Jan 6, 2024 · 0 comments
Labels
enhancement New feature or request Secret Management Component: secret management for bundled Postgres

Comments

@ilyannn
Copy link
Owner

ilyannn commented Jan 6, 2024

The original motivation for only using the existingSecret field was to push people not to store credentials in the yaml files.

However the scenario where user manually puts these values should still be supported, as

  1. This the ultimately the user's choice.
  2. The security considerations from the hardcoded password can be mitigated with a network policy prohibiting access to bundled Postgres outside of the app.
  3. There are plugins that allow one to store a placeholder and then automatically retrieve the credential from an external system.
@ilyannn ilyannn added enhancement New feature or request Secret Management Component: secret management for bundled Postgres labels Jan 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request Secret Management Component: secret management for bundled Postgres
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ilyannn