Closed giorgiosironi closed 5 years ago
Option 2 not viable, the bitnami
image is locked in due to the chart using POSTGRESQL_*
environment variables (and who knows what else, e.g. paths like /bitnami/...
)
Option 3 is complicated, so let's try option 1 if we can first.
Option 1 redux, is to remove the custom user altogether and use the default postgres
one which has all the permissions we need.
Re-building https://github.com/elifesciences/elife-xpub/pull/1223 review environment to verify the fix.
http://35.172.178.78:30750/ is now working again.
Dependency of the pg-boss NPM package, a queuing system based on Postgres and introduced by Pubsweet at some point.
Can reproduce on review environments:
Options:
test
user more permissions (to be understood how)postgres
image to the defaultpostgres
one (somewhat easy, but may create other unknown problems)Before going down into any of these holes, I want to check what RDS does because it also has a slightly limited user. RDS seems ok with it:
Hence I'll open a PR for changing the postgres image we use in review environments, see if that works - let's not use a more locked down user in
ci
than we do inprod
.