Support DB username and password in GKE

forseti-security / helm-charts

Apache License 2.0

8 stars 11 forks source link

Support DB username and password in GKE #43

Closed kevensen closed 4 years ago

kevensen commented 4 years ago

As a user of Forseti on-GKE, I would like to be able to access the SQL DB with a user name and password in order to assert authentication to the database.

[ ] https://github.com/forseti-security/forseti-security/issues/3321
[ ] Add sql_db_password to server container args or ENV variable
[ ] Add sql_db_user to server container args or ENV variable

kevensen commented 4 years ago

Step 1 - Create a K8s secrets template (e.g. database-secret.yaml) in charts/forseti-security/templates/server/ that resembels

apiVersion: v1
kind: Secret
metadata:
  name: mysecret
type: Opaque
data:
  username: {{ .Values.database.username }}
  password: {{ .Values.database.password }}

Step 2 - Use the secrets as environment variables