The AWS Cloud Development Kit is a framework for defining cloud infrastructure in code
11.59k
stars
3.89k
forks
source link
aws-redshift-alpha: User DatabaseSecret created without masterarn in Secret Text causing multi-user secret rotation to fail #28852
Open
penniman26 opened 8 months ago
Describe the bug
Multi-User Secret Rotation on Redshift User Secret does not work without a
masterarn
field present in Redshift User Secret serialized JSON text.The User Construct does not plumb in the Cluster's secret (i.e. the master secret) to the DatabaseSecret in the User constructor.
A similar change was applied to RDS's DatabaseSecret and Cluster to enable Multi-User Secret Rotation
Expected Behavior
After enabling Multi-User Secret Rotation:
The Redshift User Secret has a
masterarn
so that Multi-User Secret Rotation worksCurrent Behavior
The Secret Rotation Lambda fails with
Reproduction Steps
Possible Solution
props.adminUser
to DatabaseSecret's new masterSecret propAdditional Information/Context
No response
CDK CLI Version
2.70.0
Framework Version
No response
Node.js Version
18
OS
AL2
Language
TypeScript
Language Version
No response
Other information
No response