add force_ssl configuration to pipeline by cweibel · Pull Request #405 · cloud-gov/aws-broker

cweibel · 2025-03-25T13:17:59Z

Changes proposed in this pull request:

Should expose rds.force_ssl to be configured for each environment from the pipeline, leaving it as the default value for now so it can be overridden as part of an upgrade.
The rest of the whitespace changes are a result of running terraform fmt
Part of Postgres upgrade 16.8 - aws_broker in development, staging and production https://github.com/cloud-gov/private/issues/2393

For any logging statements, is there any chance that they could be logging sensitive data?
Are log statements using a logging library with a logging level set? Setting a logging level means that log statements "below" that level will not be written to the output. For example, if the logging level is set to INFO and debugging statements are written with log.debug or similar, then they won't be written to the otput, which can prevent unintentional leaks of sensitive data.

This should result in a no-op deployment

add force_ssl

fc3dff6

cweibel requested a review from a team as a code owner March 25, 2025 13:18

cweibel changed the title ~~add force_ssl~~ add force_ssl configuration to pipeline Mar 25, 2025

markdboyd approved these changes Mar 25, 2025

View reviewed changes

cweibel added this pull request to the merge queue Mar 25, 2025

Merged via the queue into main with commit b54a311 Mar 25, 2025
6 checks passed

cweibel deleted the force_ssl branch March 25, 2025 13:28