feat: pg ssl certificate support for event streams user#1483
feat: pg ssl certificate support for event streams user#1483
Conversation
Adding support for postgresl SSL certificates for the event streams database user.
ttuffin
force-pushed
the
event_stream_db_support_mtls
branch
from
38e7b55 to
177c3c4
Compare
|
/run-e2e |
Codecov Report✅ All modified and coverable lines are covered by tests. @@ Coverage Diff @@
## main #1483 +/- ##
=======================================
Coverage 91.44% 91.44%
=======================================
Files 235 235
Lines 10135 10140 +5
=======================================
+ Hits 9268 9273 +5
Misses 867 867
Flags with carried forward coverage won't be shown. Click here to find out more.
🚀 New features to boost your workflow:
|
|
|
Green e2e tests: https://github.com/ansible/eda-server/actions/runs/22155630276 |
| # Use dedicated event stream credentials only if both username | ||
| # and password are defined, otherwise use default DB credentials. | ||
| if settings.EVENT_STREAM_DB_USER and settings.EVENT_STREAM_DB_PASSWORD: | ||
| # use TLS certs if provided |
There was a problem hiding this comment.
@ttuffin There is an ssl_mode field will that have to be kept in sync with certain auth parameters. If we inherit the ssl_mode from EDA DB access if the user doesn't provide the EVENT_STREAM_DB_SSLCERT and EVENT_STREAM_DB_SSLKEY would we fail the startup or will the installer ensure that based on the ssl_mode we have the correct set of required parameters.
3 participants
Adding support for postgresl SSL certificates for the event streams database user. This allows the user to specify a SSL certificate and key strictly for the event streams database user.
Related to ongoing work in https://issues.redhat.com/browse/AAP-65135.