Skip to content

feat: generate self-signed pgbouncer certs with script #718

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
thesuperzapper merged 1 commit into from
Apr 7, 2023
Merged

feat: generate self-signed pgbouncer certs with script #718

thesuperzapper merged 1 commit into from
Apr 7, 2023

Conversation

@thesuperzapper
Copy link
Member

@thesuperzapper thesuperzapper commented Apr 6, 2023
edited
Loading

What issues does your PR fix?

  • N/A

What does your PR do?

This PR changes the way we generate self-signed certificates for PgBouncer, so that we no longer uses the helm genSelfSignedCert function, which was causing the manifests to show as perpetually "out of sync" in systems like ArgoCD (as each time this function runs, it generates a unique certificate).

We now use our script /home/pgbouncer/config/gen_self_signed_cert.sh which runs on startup and generates a self-signed SSL certificate using the openssl command line (if the user does not provide their own "existingSecret" for the client certificates).

This PR also updates the default PgBouncer image to ghcr.io/airflow-helm/pgbouncer:1.18.0-patch.1 as this was the first version in which we included the openssl CLI.

Checklist

For all Pull Requests

@thesuperzapper thesuperzapper added this to the airflow-8.7.0 milestone Apr 6, 2023
@thesuperzapper thesuperzapper added the status/ready-to-merge status - this will be merged into next release label Apr 6, 2023
@thesuperzapper thesuperzapper merged commit 3c08871 into airflow-helm:main Apr 7, 2023
@thesuperzapper thesuperzapper deleted the generate-pgbouncer-certs-with-script branch April 7, 2023 01:27
@enrique-ayala enrique-ayala mentioned this pull request Jul 24, 2023
Closed
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

status/ready-to-merge status - this will be merged into next release

Projects

Issue Triage and PR Tracking
Archived in project

Milestone

airflow-8.7.0

Development

Successfully merging this pull request may close these issues.

1 participant

@thesuperzapper