![]() ![]() Secretless supports the following SSL modes: Provided by different values for the sslmode parameter. The PostgreSQL documentation website provides detail on the levels of protection Parameter is ignored if an SSL connection is not made. ![]() The content of this parameter specifies the secret key used for the clientĬertificate, replacing the default ~/.postgresql/postgresql.key. Server's certificate is verified to be signed by one of these The content of this parameter specifies the SSL certificate authority (CA)Ĭertificate(s), replacing the default ~/.postgresql/root.crt. The default ~/.postgresql/postgresql.crt. The content of this parameter specifies the client SSL certificate, replacing Defaults toįor details on the supported values of this parameter, see SSL Modes. ![]() This includes where to find your database's host, port, username, and password, as well as the sslmode details, such as the location of any relevant certificates and revocation lists, if applicable.ĭetermines if the connection between the Secretless BrokerĪnd your database is protected by SSL. If your environment does not use TLS, turn it off if you can do so safely.Ĭonfigure the Secretless Broker to specify where to find your database connection details in the credentials section of the yaml file. Unlike other clients, the default sslmode for Secretless is require since most use cases require TLS. To secure connections, we support all of the PostgreSQL SSL options that you are familar The PostgreSQL service connector processes connection requests to a PostgreSQL
0 Comments
Leave a Reply. |