Allow to define SSL keys for configuration and chown then for proper usage

[iranzo]

Allow to define ssl settings via environment variable and check them on /pg-ssl secret in kubernetes so that keys are copied and chowned to end folder:

CONFIGS: ssl:on,ssl_cert_file:'/etc/postgresql/server.crt',ssl_key_file:'/etc/postgresql/server.key'
And provide a secret like:

apiVersion: v1
data:
server.crt: >-
YOURSECRET
server.key: >-
YOURSECRET
kind: Secret
metadata:
name: postgres
namespace: YOURNAMESPACE
selfLink: /api/v1/namespaces/quay-enterprise/secrets/postgres
type: Opaque
That must be mounted on /pg-ssl

[paunin]

Need some tests if you go for SSL.
Also better to have some examples of usage.

[iranzo]

Blog post is pending, I'll update once it is finalized and released

[cooktheryan]

@paunin is there any way we can help with the testing to get this merged

[paunin]

@cooktheryan Yes. Add some

• documentation about usage of the feature
• tests that feature works as designed

• May be you need to follow example with SSH for the keys https://github.com/paunin/PostDock/blob/master/src/ssh/sshd_start