Ability to change Postgres credentials
T
Tyler Gearing
I’d love a “roll password” button on the database page. It would be nice if the services using the connection string automatically restarted with it, but I could do that manually if needed. I really just don’t want to have to dump/restore a new database in order to downgrade someone’s credentials (I’d like to do more than just remove their IP from the list). I think that the nicest would be to even have scheduled password recreating.
Log In
I
Ian Tuomi
This is a high priority requirement for us for the same reason as Can mentioned.
E
Eugene Datsky
The problem is also that ALTER USER doesn't update the env variable that's exposed to other services, so rotating passwords really looks like:
- ALTER USER in the DB
- Update env var for every dependent service in the UI
- Change blueprints env vars from fromDatabasetosync: false
- Rebuild and restart every dependent service clearing cache
d
danmorgz
same
C
Can Duruk
This is a key requirement for us — this means that if our credentials are ever exposed, we don't really have a way to rotate them easily.
Is there a suggested workflow for this case?
S
Sergey Alexashenko
Can Duruk: You can do ALTER USER but a button would be nice