Skip to content

(PDB-2578) Allow the database password to be unmanaged#301

Merged
austb merged 1 commit intopuppetlabs:masterfrom
natemccurdy:unmanaged_password
Jun 1, 2020
Merged

(PDB-2578) Allow the database password to be unmanaged#301
austb merged 1 commit intopuppetlabs:masterfrom
natemccurdy:unmanaged_password

Conversation

@natemccurdy
Copy link
Copy Markdown
Contributor

@natemccurdy natemccurdy commented Feb 28, 2020
edited
Loading

Prior to this, it was impossible to not manage the database and read-database passwords. An attempt to allow undef as the password was made in #78 but that failed to solve the problem as a default value of puppetdb is pulled from params.pp.

This PR adds two new parameters to the puppetdb and puppetdb::server classes:

  • manage_db_password
  • manage_read_db_password

Both default to true to retain backwards compatibility.

Setting these new parameters to false will cause the ini_setting resource that manages the password entry to not be enforced.

This is useful for folks that don't want to put plaintext passwords in their code or who want to manage that password value some other way besides with Puppet.

Fixes: https://tickets.puppetlabs.com/browse/PDB-2578

@natemccurdy natemccurdy requested a review from a team as a code owner March 30, 2020 20:03
@natemccurdy natemccurdy changed the title Allow the database password to be unmanaged (PDB-2578) Allow the database password to be unmanaged Mar 30, 2020
@austb austb merged commit 6af3052 into puppetlabs:master Jun 1, 2020
@natemccurdy natemccurdy deleted the unmanaged_password branch June 1, 2020 22:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

enhancement

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@natemccurdy @smortex @austb