Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow changing an RDS instance master password, e.g. after restoring from a snapshot #1121

Closed
danports opened this issue Feb 6, 2022 · 7 comments
Closed

Allow changing an RDS instance master password, e.g. after restoring from a snapshot #1121

danports opened this issue Feb 6, 2022 · 7 comments
Labels
enhancement New feature or request stale

Comments

@danports
Copy link
Contributor

danports commented Feb 6, 2022

This is a follow up from #1087.

What problem are you facing?

As it stands, the provider will never set the master password for instances restored from snapshots: The underlying RestoreDBInstanceFromDBSnapshot AWS API call doesn't support it, and GenerateModifyDBInstanceInput disregards password changes. Thanks to the latter, there's also no way to change the master password for an existing RDS instance if the user desires that.

How could Crossplane help solve your problem?

Provide some mechanism for changing RDS instance master passwords, e.g. by keeping them in sync with the referenced secret.
@danports danports added the enhancement New feature or request label Feb 6, 2022
@danports danports mentioned this issue Feb 6, 2022
Merged
4 tasks
@eloo
Copy link

eloo commented Feb 15, 2022

@danports
i second that request because this would enable us to simply rebind a resource if the kubernetes resource of crossplane was remove with DeletionPolicy: orphan.

i have asked for this scenario in slack already:
https://crossplane.slack.com/archives/C01718T2476/p1643819387848399

Closed
@bianchi2
Copy link

I wonder if there's any workaround/hack other than calling AWS API directly to reset master credentials

@MisterMX
Copy link
Collaborator

MisterMX commented Sep 4, 2023

Have you checked if #1756 made any differences?

@bianchi2
Copy link

bianchi2 commented Sep 4, 2023
edited
Loading

Unfortunately, in 0.43.0 it is still an issue

dee0 pushed a commit to dee0sap/provider-aws that referenced this issue Sep 26, 2023
@dee0sap
Partial fix crossplane-contrib#1121. Set password after restoring fro…
fa3b543 
…m Snapshot.
@MisterMX MisterMX mentioned this issue Sep 28, 2023
Closed
@MisterMX
Copy link
Collaborator

MisterMX commented Oct 10, 2023
edited
Loading

As described in #1879 (comment) I think the best way to solve this issue would be to implement something like #1756 for RDSInstance that stores the last password in a cache and performs and update if old and new passwords do not match.

@github-actions GitHub Actions
Copy link

github-actions bot commented Jan 9, 2024

Crossplane does not currently have enough maintainers to address every issue and pull request. This issue has been automatically marked as stale because it has had no activity in the last 90 days. It will be closed in 14 days if no further activity occurs. Leaving a comment starting with /fresh will mark this issue as not stale.

@github-actions github-actions bot added the stale label Jan 9, 2024
@github-actions github-actions bot closed this as not planned Won't fix, can't repro, duplicate, stale Jan 23, 2024
tektondeploy pushed a commit to gtn3010/provider-aws that referenced this issue Mar 12, 2024
@ulucinar
Merge pull request crossplane-contrib#1121 from ulucinar/rename-to-pl…
a0270a8 
…uginsdk

Switch from the NoFork terminology to the TerraformPluginSDK terminology
@Yc-Chen
Copy link

Yc-Chen commented Jun 14, 2024

I also suffer from the same issue

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix(rds): issue 1121 Fix restore rdsinstance passwords set dee0sap/provider-aws
5 participants
@eloo @Yc-Chen @danports @MisterMX @bianchi2