Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

authentication.superuser.password field in the postgres.yml is stored in plain text under postgres pod #2744

Open
sheel07 opened this issue Aug 28, 2024 · 0 comments
Open

authentication.superuser.password field in the postgres.yml is stored in plain text under postgres pod #2744

sheel07 opened this issue Aug 28, 2024 · 0 comments

Comments

@sheel07
Copy link

sheel07 commented Aug 28, 2024

Please, answer some short questions which should help us to understand your problem / question better?

  • operator image : ghcr.io/zalando/postgres-operator:v1.10.1
  • environment : Kubernetes
  • Type of issue : Bug report

authentication.superuser.password field in the postgres.yml is stored in plain text even when we pass Kubernetes Secrets with base64 encoded password.

postgres@rdbms-pg-cluster-dev-1:$ grep -i password postgres.yml
password: ''
password: RtttSedreSErSSErREreREEsSSSSSSSSsErERer
password: Devloper123_
postgres@rdbms-pg-cluster-dev-1:$

Is there any way in Zalando's Postgres Operator to have authentication.superuser.password field in encrypted form?

if encrytion is not possible within Zalando's Postgres Operator then, is there any other way to make postgres.yml more secure?
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sheel07