Skip to content

IND-5776 Postgres passwordless release test #188

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 8 commits into from
Closed

IND-5776 Postgres passwordless release test #188

Show file tree
Hide file tree
Changes from 3 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
b5c3c41
Add AWS IAM database authentication support
raviharshicorp Sep 26, 2025
e3e43dd
Add AWS IAM database authentication support
raviharshicorp Sep 26, 2025
a69de1c
Fix duplicate variable declarations for AWS IAM database authentication
raviharshicorp Oct 7, 2025
86eec09
Fix: Add missing TFE_DATABASE_PASSWORDLESS_AWS_USE_INSTANCE_PROFILE f…
raviharshicorp Oct 29, 2025
014a42f
Remove Redis AWS IAM passwordless variables from PostgreSQL-only branch
raviharshicorp Oct 30, 2025
7da773e
Remove all Redis AWS IAM passwordless configurations from PostgreSQL-…
raviharshicorp Oct 30, 2025
6c5ed8a
Complete cleanup of Redis AWS IAM references from redis_config.tf
raviharshicorp Oct 30, 2025
f260178
Add GCP IAM database authentication support
raviharshicorp Oct 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions modules/runtime_container_engine_config/database_config.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,8 @@ locals {
TFE_DATABASE_CLIENT_KEY_FILE = var.database_client_key_file
TFE_DATABASE_PASSWORDLESS_AZURE_USE_MSI = var.database_passwordless_azure_use_msi
TFE_DATABASE_PASSWORDLESS_AZURE_CLIENT_ID = var.database_passwordless_azure_client_id
DATABASE_AUTH_USE_AWS_IAM = var.database_passwordless_aws_use_iam
Copy link
Contributor

@tauhid621 tauhid621 Oct 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why are the variables not starting with TFE here?.
We should have consistency with other variables

DATABASE_AUTH_AWS_DB_REGION = var.database_passwordless_aws_region
}
database_configuration = local.disk ? {} : local.database
explorer_database = {
Expand Down
12 changes: 12 additions & 0 deletions modules/runtime_container_engine_config/variables.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -106,6 +106,18 @@ variable "database_passwordless_azure_client_id" {
description = "Azure Managed Service Identity (MSI) Client ID. If not set, System Assigned Managed Identity will be used."
}

variable "database_passwordless_aws_use_iam" {
default = false
type = bool
description = "Whether or not to use AWS IAM authentication to connect to the PostgreSQL database. Defaults to false if no value is given."
}

variable "database_passwordless_aws_region" {
default = ""
type = string
description = "AWS region for IAM database authentication. Required when database_passwordless_aws_use_iam is true."
}

variable "explorer_database_host" {
type = string
default = null
Expand Down