Open eternaltyro opened 1 year ago
I am considering using this orb: https://circleci.com/developer/orbs/orb/ware2go/aws-rds
Yes, the ORB is MIT licensed too. We have to assess compatibility with OIDC though, since the orb does not seem to take AWS_SESSION_TOKEN
as one of the parameters which is required for temporary credentials.
What are your thoughts @dakotabenjamin on removing cleanup steps and snapshot deletion from the CI config altogether?
Current snapshot approach in the CI pipeline
Currently, the Database snapshot logic for TM4 PostgreSQL is complex.
aws:cloudformation:stack-name
*-latest
does exist, then we rename it and create a new snapshot with the same name.Simplifying the snapshot process
The rough approach to simplifying and streamlining this process.
copy-db-snapshot
,delete-db-snapshot
, and all other logic that attempts find the age of the snapshot.create-db-snapshot
production
,staging
,teachosm
and other critical workflows as a required step on which other jobs such asbackend-deploy
dependOld snapshot cleanup
If absolutely necessary, we can cleanup old snapshots by fetching snapshots older than "now date" at run time of every production deployment.
Ideally, this should be relegated to AWS Backup or a scheduled script.