Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Postgres secrets written to wrong destination in Nomad are visible in UI #77

Closed
1 of 3 tasks
lmjelstad opened this issue Jun 23, 2021 · 0 comments · Fixed by #79
Closed
1 of 3 tasks

Postgres secrets written to wrong destination in Nomad are visible in UI #77

lmjelstad opened this issue Jun 23, 2021 · 0 comments · Fixed by #79
Assignees
@lmjelstad
Labels
type/bug

Comments

@lmjelstad
Copy link
Contributor

lmjelstad commented Jun 23, 2021
edited
Loading

Current behaviour

The Postgres secrets are written to local/secrets/.envs https://github.com/Skatteetaten/terraform-nomad-postgres/blob/master/conf/nomad/postgres.hcl#L89

This location is open in Nomad UI, and the username/password can be read

Expected behaviour

Secrets should not be available in Nomad UI

How to reproduce?

Deploy Postgres module and look at files in Nomad UI

Suggestion(s)/solution(s) [Optional]

Move secrets to secrets/.envs

Checklist (after created issue)

  • Added label(s)
  • Added to project
  • Added to milestone
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lmjelstad lmjelstad

Labels
type/bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Move destination of secrets in nomad Skatteetaten/terraform-nomad-postgres
1 participant
@lmjelstad