Page MenuHomePhabricator
Create Task
Maniphest T300048

Postgres puppet modules use MD5 for users by default
Closed, ResolvedPublic
Actions

Description

Currently we use md5 passwords for new postgres users. This is obviously not ideal but has largely been the standard for postgres users historically. Postgres allows the use of SCRAM-SHA-256 and we use Postgres 11 across the board on maps, netbox and puppetdb. The challenge is figuring out whether our clients will support this authentication method, and if not trying to move them towards supporting them.

Event Timeline

hnowlan created this task.Jan 25 2022, 2:59 PM
Restricted Application added a project: Infrastructure-Foundations. · View Herald TranscriptJan 25 2022, 2:59 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
jbond triaged this task as Medium priority.Feb 16 2022, 4:55 PM
jbond added a project: Puppet.
jbond subscribed.Jun 12 2023, 5:21 PM

@hnowlan i did some patches to add support for this with the puppetdb upgrade. it no longer suports password changes but it dose allow us to get a build (allthough i think there may be some lingering issues)

jbond edited projects, added Puppet-Infrastructure, PostgreSQL; removed Puppet.Jun 12 2023, 5:21 PM
jbond closed this task as Resolved.Nov 14 2023, 4:25 PM
jbond claimed this task.

going to close this as i think its resolved but please reopen if not

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL