Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: Database password secret required even if webModeler.restapi.externalDatabase.password is blank #1761

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

fix: Database password secret required even if webModeler.restapi.externalDatabase.password is blank #1761

wants to merge 3 commits into from

Conversation

drodriguez-305
Copy link
Contributor

Which problem does the PR fix?

Related to https://jira.camunda.com/browse/SUPPORT-21863

When configuring WebModeler.RestAPI to Postgres using IAM Role Base Authentication, it should not require environment variable SPRING_DATASOURCE_PASSWORD and its corresponding secret to be set

  1. Do not specify any database password for webModeler.restapi.externalDatabase.password in values.yaml
  2. Run helm install
  3. webmodeler-restapi pod is unable to start up with a status of CreateContainerConfigError, with the following message: secret "<release_name>-web-modeler-restapi" not found

What's in this PR?

It enables configuration of WebModeler.RestAPI to Postgres using IAM Role Base Authentication without requiring password secret defined and environment variable from rendering into the Kubernetes resource

Checklist

Please make sure to follow our Contributing Guide.

Before opening the PR:

  • In the repo's root dir, run make go.update-golden-only.
  • There is no other open pull request for the same update/change.
  • Tests for charts are added (if needed).
  • In-repo documentation are updated (if needed).

After opening the PR:

  • Did you sign our CLA (Contributor License Agreement)? It will show once you open the PR.
  • Did all checks/tests pass in the PR?

@drodriguez-305 drodriguez-305 added this to the 8.6 Release Cycle milestone May 8, 2024
@drodriguez-305 drodriguez-305 self-assigned this May 8, 2024
@drodriguez-305 drodriguez-305 added the support Marks an issue as related to a customer support request (don't edit the lable) label May 22, 2024
@drodriguez-305 drodriguez-305 requested review from aabouzaid and a team May 22, 2024 21:43
@drodriguez-305 drodriguez-305 force-pushed the inc-support-21863-db-password-helm-chart branch from eb34bad to 6447c87 Compare May 22, 2024 22:20
aabouzaid
aabouzaid reviewed May 27, 2024
View reviewed changes
charts/camunda-platform/templates/web-modeler/deployment-restapi.yaml
@@ -34,11 +34,13 @@ spec:
env:
- name: JAVA_OPTIONS
value: "-XX:MaxRAMPercentage=80.0"
{{- if or (not .Values.webModeler.restapi.externalDatabase.enabled) .Values.webModeler.restapi.externalDatabase.password }}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's add a unit test for this, please.

@hamza-m-masood hamza-m-masood added kind/medic Tasks for the medic and removed kind/support labels May 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aabouzaid aabouzaid aabouzaid left review comments

At least 1 approving review is required to merge this pull request.

Assignees

@drodriguez-305 drodriguez-305

Labels
kind/fix kind/medic Tasks for the medic support Marks an issue as related to a customer support request (don't edit the lable)
Projects
None yet
Milestone
8.6 Release Cycle
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@drodriguez-305 @aabouzaid @hamza-m-masood