Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

rds module should support enabling encryption #24415

Closed
conlon opened this Issue May 9, 2017 · 3 comments

Comments

Projects
None yet
4 participants
@conlon
Copy link

conlon commented May 9, 2017

ISSUE TYPE
  • Feature Idea
COMPONENT NAME

rds module

ANSIBLE VERSION
ansible 2.0.2.0
  config file =
  configured module search path = Default w/o overrides

(this feature isn't available in any version of Ansible)

CONFIGURATION

ansible.cfg:

[defaults]
roles_path = roles
lookup_plugins = lookup_plugins
filter_plugins = filter_plugins
hash_behaviour = merge
library = custom_modules
forks = 50

[ssh_connection]
scp_if_ssh = True
pipelining = True
# an attempt to fix ssh unreachable errors when machines are actually reachable
retries = 5
OS / ENVIRONMENT

N/A

SUMMARY

RDS has supported encryption since the very beginning of 2015. Is it seriously not yet a feature to enable this via ansible?

I'd like some options made available for rds just like are provided with ec2_vol:

encrypted: yes
kms_key_id: <key_id>

They would only need to be supported with command: create because RDS apparently doesn't support enabling/disabling encryption on an existing database.

STEPS TO REPRODUCE

N/A

EXPECTED RESULTS

N/A

ACTUAL RESULTS

N/A

@ansibot

This comment has been minimized.

Copy link
Contributor

ansibot commented May 9, 2017

@internetuser2008

This comment has been minimized.

Copy link

internetuser2008 commented May 17, 2017

I am looking for same functionality, and plus create read replica with create option for postgres.

encrypted: yes
kms_key_id: <key_id> 
@conlon

This comment has been minimized.

Copy link
Author

conlon commented May 17, 2017

@internetuser2008 creating read replicas should be possible with

command: replicate

instead of

command: create

@ansibot ansibot added feature and removed feature_idea labels Mar 2, 2018

jonassteinberg1 added a commit to jonassteinberg1/ansible that referenced this issue Mar 6, 2019

jonassteinberg1 added a commit to jonassteinberg1/ansible that referenced this issue Mar 6, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.