Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Implement Vault for secret management and key rotation #1363

Open
i5okie opened this issue Sep 16, 2024 · 1 comment
Open

Implement Vault for secret management and key rotation #1363

i5okie opened this issue Sep 16, 2024 · 1 comment
Labels
pinned Pinned item that will never become stale

Comments

@i5okie
Copy link
Contributor

i5okie commented Sep 16, 2024

Inventory of Credentials

Notes added after initial assessment

Secret Name Rotatable Keys Type Instances Notes
traction-database-pguser-acapy password pg user credentials crunchy postgres cluster
traction-database-pguser-pgadmin password pg user credentials crunchy postgres cluster
traction-database-pguser-walletman password pg user credentials crunchy postgres cluster
traction-database-pgbouncer pgbouncer-password pgbouncer credentials crunchy postgres cluster
traction-database-acapy acapy-password, walletman-password pg user credentials traction acapy pods
traction-database-pgbackrest pgbackrest cert/keys crunchy HA pods potentially rotate the pgbackrest certs/keys
traction-database-replication-cert ca.crt, tls.crt, tls.key pg replication cert/key
traction-database-ha-*-certs pgbackrest-server.crt, pgbackrest-server.key crunchy HA pods potentially rotate pgbackrest stuff
traction-acapy-api acapy api keys traction tenant ui potentially adminApiKey, webhookapi
traction-acapy-plugin-innkeeper acapy innkeeper key traction acapy, tenant ui potentially walletkey
traction-acapy-walletkey walletKey acapy wallet key traction acapy
@i5okie i5okie moved this to Assignment Ready in CDT Enterprise Apps Sep 16, 2024
Copy link

This issue is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 5 days.

@github-actions github-actions bot added the Stale label Oct 17, 2024
@WadeBarnes WadeBarnes added pinned Pinned item that will never become stale and removed Stale labels Oct 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
pinned Pinned item that will never become stale
Projects
Status: Assignment Ready
Development

No branches or pull requests

2 participants