Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backups incompatibility with unencrypted minio #198

Closed
donch opened this issue Feb 28, 2024 · 2 comments · Fixed by #221
Closed

Backups incompatibility with unencrypted minio #198

donch opened this issue Feb 28, 2024 · 2 comments · Fixed by #221
Labels
chart( cluster ) Related to the cluster chart

Comments

@donch
Copy link

donch commented Feb 28, 2024

When i enable S3 backups with a minio configuration.

The barmanConfig looks like :

barmanObjectStore: wal: compression: gzip encryption: AES256 data: compression: gzip encryption: AES256 jobs: 2

This configuration doesn't work if you don't enable KMS/Encryption on your minio. It would be nice to configure these settings.
For exemple, we need to change the AES256 to "" for backup and wal archiving to work.
@itay-grudev
Copy link
Collaborator

Am I correct in assuming that all you are asking for is that the settings are exposed in .Values?

@itay-grudev itay-grudev mentioned this issue Mar 17, 2024
Merged
@itay-grudev
Copy link
Collaborator

itay-grudev commented Mar 17, 2024
edited
Loading

@donch Would #221 do the trick? You will be able to disable the encryption by setting:

backups:
  wal:
    encryption: ""
  data:
    encryption: ""

As per the operator documentation setting it to an empty string "" would in effect use the storage container defaults.

@itay-grudev itay-grudev mentioned this issue Mar 21, 2024
Closed
itay-grudev added a commit that referenced this issue Mar 27, 2024
@itay-grudev
Release cluster-v0.0.4
5d2f106 
* Added the ability to exclude specific PrometheusRules by @itay-grudev (#232)
* Added config value endpointCA for private S3 such as MinIO by @PseudoResonance (#229, #230)
* Bug Fix: Severity of CNPGClusterLowDiskSpaceCritical should be critical not warning by @baurmatt (#223)
* New `backup.barmanObjectStore.wal` and `backup.barmanObjectStore.data` to support disabling encryption by @itay-grudev (#198, #221)

Signed-off-by: Itay Grudev <itay.grudev@essentim.com>
@itay-grudev itay-grudev mentioned this issue Mar 27, 2024
Merged
itay-grudev added a commit that referenced this issue Mar 27, 2024
@github-actions @itay-grudev
Release cluster-v0.0.4 (#234)
f2d6ea7 
* Added the ability to exclude specific PrometheusRules by @itay-grudev (#232)
* Added config value endpointCA for private S3 such as MinIO by @PseudoResonance (#229, #230)
* Bug Fix: Severity of CNPGClusterLowDiskSpaceCritical should be critical not warning by @baurmatt (#223)
* New `backup.barmanObjectStore.wal` and `backup.barmanObjectStore.data` to support disabling encryption by @itay-grudev (#198, #221)

Signed-off-by: Itay Grudev <itay.grudev@essentim.com>
Co-authored-by: Itay Grudev <itay.grudev@essentim.com>
@itay-grudev itay-grudev added the chart( cluster ) Related to the cluster chart label May 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
chart( cluster ) Related to the cluster chart
Projects
None yet
Milestone
No milestone
2 participants
@itay-grudev @donch