Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Templating Support for Generating Passwords and Password Secrets in Uptest #56

Open
ulucinar opened this issue Dec 20, 2022 · 0 comments
Labels
enhancement New feature or request
Milestone

Comments

@ulucinar
Copy link
Contributor

What problem are you facing?

Certain resources depend on "input" secrets that we need to specify as part of resource specification like DB passwords. Currently we can workaround this with something like the following:
https://github.com/upbound/provider-azure/blob/b53e573213055e547a45a1afaa762c90f6f369d5/examples/dbformysql/server.yaml#L59
, i.e., by utilizing the available Rand.RFC1123Subdomain templating expression. However, there can be different constraints in general to be satisfied by the passwords & passphrases (generally defined as password/passphrase policies).

How could Upbound help solve your problem?

It makes sense to have a templating support for generating passwords (with special chars, mixed case strings, etc. which violate RFC 1123 subdomain naming. We can also consider a higher level API in resource metadata configuration (or as part of a preprocessor for example manifests) that will inject a secret dependency with a generated password at runtime on top of this templating support.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants