Create Postgres superuser password randomly in security mode #5050
Assignees
Labels
enhancement
New feature or request
Comments
lindseysimple
added a commit
to lindseysimple/edgex-go
that referenced
this issue
Jan 13, 2025
Resolves edgexfoundry#5050. Save postgres superuser password in secretstore. Signed-off-by: Lindsey Cheng <[email protected]>
5 tasks
lindseysimple
added a commit
to lindseysimple/edgex-go
that referenced
this issue
Jan 14, 2025
Resolves edgexfoundry#5050. Save postgres superuser password in secretstore. Signed-off-by: Lindsey Cheng <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
🚀 Feature Request
Relevant Package [REQUIRED]
This feature request is for all EdgeX using Postgres database in security mode.
Description [REQUIRED]
Currently the superuser password for Postgres is defined directly in the docker compose file by the
POSTGRES_PASSWORDenvironment variable.For security concern, the superuser password should not be exposed in the compose file and should be saved in the secret store.
Describe the solution you'd like
A superuser password for Postgres will be generated randomly by the
secretstore-setupservice if the database is initialized for the first time and will be saved to the secret store; otherwise, the superuser password for Postgres will be retrieved from the secret store.The text was updated successfully, but these errors were encountered: