RDS - There's no way to avoid Secret Manager password rotation when setting manageMasterUserPassword to true.

[RanMarkovich]

Describe the bug
I'm trying to create an RDS DB instance using the below manifest:

apiVersion: rds.services.k8s.aws/v1alpha1
kind: DBInstance
metadata:
  name: test-mysql-instance
spec:
  dbInstanceClass: db.t3.micro
  dbInstanceIdentifier: test-mysql-instance
  engine: mysql
  manageMasterUserPassword: true
  masterUsername: db_owner

This will result in the creation of a DB Instance with an auto-generated password in Secret Manager.

The default auto-created password rotates every 7 days.

Expected outcome
Support for non-rotating passwords should be available, as there's an option to disable password rotation manually via the AWS console.

Environment

• Kubernetes version: v1.31.13-eks-113cf36
• Using EKS (yes/no): yes
• AWS service targeted: RDS
• Chart: rds-chart-1.6.0

[github-actions]

Hello @RanMarkovich 👋 Thank you for opening an issue in ACK! A maintainer will triage this issue soon.

We encourage community contributions, so if you're interested in tackling this yourself or suggesting a solution, please check out our Contribution and Code of Conduct guidelines.

You can find more information about ACK on our website.