Open gecube opened 1 week ago
I want to point out that kmsID is not put into the target object for some reason and the flag storageEncrypted
is false
.
No meaningful errors found in logs of RDS controller. Also putting kustomize.toolkit.fluxcd.io/ssa: Merge
annotation on RDS object does not help.
Hi @gecube - thank you for reporting this! I quickly checked the RestoreDBInstanceFromSnapshot
API and it doesn't look like it provides a way to restore DBInstances with encrypted storage https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RestoreDBInstanceFromDBSnapshot.html - looks like this is only possible with DBClusters
Good day!
I have an ACK toolkit RDS controller v.1.4.6.
I want to create a DB from snapshot encrypted by KMS.
I prepared the next manifest:
for KMS and these resources were applied properly.
Then I want to create DB:
In fact I am getting the next: