Make database secrets more consistent #2889

corneliusroemer · 2024-09-27T12:09:48Z

@anna-parker and I were looking into how to get the database name from the config. We were a bit confused that we currently specify secrets for keycloak-database and loculus-database in inconsistent ways:

  database:
    type: sealedsecret
    clusterWide: "true"
    encryptedData:
      host: AgDUG
      password: AgCm
      url: AgC
      username: AgAp
  keycloak-database:
    type: sealedsecret
    clusterWide: "true"
    encryptedData:
      addr: AgAw
      database: AgB
      password: AgDB
      port: Ag
      username: AgAuZZ

For more consistency we should

rename database to loculus-database
use identical fields in encrypted data, i.e. also have database, addr, url ... in loculus-database and vice versa

The text was updated successfully, but these errors were encountered:

theosanderson · 2024-09-27T12:20:08Z

I wouldn't add unused fields: it's already a fair bit of effort to seal all the secrets. That doesn't stop you getting consistency, I expect, but it means you need to construct the URL from the address and the port, for example

corneliusroemer added refactoring Code requires refactoring config Configuration related issues, i.e. helm processing labels Sep 27, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Make database secrets more consistent #2889

Make database secrets more consistent #2889

corneliusroemer commented Sep 27, 2024

theosanderson commented Sep 27, 2024

Make database secrets more consistent #2889

Make database secrets more consistent #2889

Comments

corneliusroemer commented Sep 27, 2024

theosanderson commented Sep 27, 2024