(PDB-2578) Allow the database password to be unmanaged #301

natemccurdy · 2020-02-28T22:58:10Z

Prior to this, it was impossible to not manage the database and read-database passwords. An attempt to allow undef as the password was made in #78 but that failed to solve the problem as a default value of puppetdb is pulled from params.pp.

This PR adds two new parameters to the puppetdb and puppetdb::server classes:

manage_db_password
manage_read_db_password

Both default to true to retain backwards compatibility.

Setting these new parameters to false will cause the ini_setting resource that manages the password entry to not be enforced.

This is useful for folks that don't want to put plaintext passwords in their code or who want to manage that password value some other way besides with Puppet.

Fixes: https://tickets.puppetlabs.com/browse/PDB-2578

Allow the database password to be unmanaged

1a7a9ac

natemccurdy force-pushed the unmanaged_password branch from b50b05c to 1a7a9ac Compare March 30, 2020 20:03

natemccurdy requested a review from a team as a code owner March 30, 2020 20:03

natemccurdy changed the title ~~Allow the database password to be unmanaged~~ (PDB-2578) Allow the database password to be unmanaged Mar 30, 2020

austb merged commit 6af3052 into puppetlabs:master Jun 1, 2020

natemccurdy deleted the unmanaged_password branch June 1, 2020 22:49

smortex added the enhancement label Apr 18, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

(PDB-2578) Allow the database password to be unmanaged #301

(PDB-2578) Allow the database password to be unmanaged #301

natemccurdy commented Feb 28, 2020 •

edited

Loading

(PDB-2578) Allow the database password to be unmanaged #301

(PDB-2578) Allow the database password to be unmanaged #301

Conversation

natemccurdy commented Feb 28, 2020 • edited Loading

natemccurdy commented Feb 28, 2020 •

edited

Loading