[SSM-3] Added AWS SSM Parameter Store Integration #662
Conversation
|
@mumoshu Could you give this a once over at your convenience? Figuring out where to inject the I ended up keeping the same solution as before, where lololol this repo hurts my head with all the callbacks 😅😅😅😅 |
|
@rms1000watt Thanks for your continuous effort! I'm still reading this throughly and thinking about how we should proceed. |
|
Apologies, don't want to hijack this-- if there's an issue / better place to ask, let me know -- in the future, could this pattern be extended to support other credential providers similar to SSM, e.g. |
|
@aegershman I think it worth a dedicated github issue for it. Would you mind creating one? Anyway, yeah - I'd love to add support for various datasources like those. Ideally/in longer-term, I'd want to maintain the layer that abstracts various datasources as a separate project, like we use |
|
@rms1000watt is this PR supposed to add support for defining some thing what is present in #573 ? ssm:
- name: east1
prefix: /dev/us-east-1/redis
region: us-east-1
- name: west2
prefix: /dev/us-west-2/redis
region: us-west-2
releases:
- name: redis-test
chart: stable/redis
values:
- fake_key:
redis_pass_east: {{ ssm "east1:redis_password" }}
redis_pass_west: {{ ssm "west2:redis_password" }}
redis_pass_seast: {{ ssm "/dev/ap-southeast-1/redis/redis_password" }}
- cluster:
enabled: false
- persistence:
enabled: false
- metrics:
enabled: falseIf so, that would be pretty neat! We're looking to use SSM in our helmfiles. |
|
@costimuraru Yeah, exactly!! It has the same intent just different code hooking to the main logic. The codebase changed since that initial PR so I took the lazy approach and branched from the new master. Full disclosure, I've been running off this branch for personal projects so I can use ssm with helmfile. Been loving it. |
|
Awesome, @rms1000watt. |
|
@costimuraru Hmm, I don't want anything to get lost in translation/definitions, so I'll just say it this way: It behaves the same way as the (So yeah, you can export the |
|
@costimuraru @rms1000watt Hey! I'd appreciate it if you could also take a look into #745. I'd like to cover this feature in a way it harmonizes well with other use-cases and issues we're trying to address in a longer term. |
|
@mumoshu I know you're suuuuuuper busy with all these projects you maintain. I'm just curious what your gut tells you for the next step on this topic? I see a few things you've cited:
Not trying to push you in any one direction, just curious about an update is all! ❤️ 👍 |
|
@rms1000watt Hey! Thanks for the reminder. I think the last thing that's unclear at the moment is whether we should use Other than that I think the design work is complete and we're ready to implement it |
|
It sounds like you guys did a great work on this. Any updates ? |
|
I'm closing this as resolved via #906. |
Reference this PR for all the previous conversations: #573
This new PR incorporates all the changes that happened to the code base over the past few weeks