Skip to content
/ postgresql-envoy-charm Public

A charm that connects a Juju model to an external PostgreSQL database

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

timClicks/postgresql-envoy-charm

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
hooks
hooks
 
 
README.md
README.md
 
 
config.yaml
config.yaml
 
 
icon.svg
icon.svg
 
 
metadata.yaml
metadata.yaml
 
 
revision
revision
 
 

Repository files navigation

Overview

Warning: prototype software

This charm is a prototype only. It is designed for testing the possibility of interacting with software deployed outside of Juju only.

This charm provides the pgsql:db interface, without installing the database. It's useful for connecting your model to a PostgreSQL database created outside of Juju's control.

This charm is an example of the Envoy pattern. An envoy charm does little work on its own. Its role is to connect a Juju model to infrastructure that exists outside of Juju. Envoy charms are also known as proxy charms and integration charms.

Usage

Deployment

Unlike regular charms, postgresql-envoy relies on system administrators to perform several setup tasks.

Pre-deployment steps

  1. Deploy a PostgreSQL database server. Note the host and port connection parameters. These will be used as configuration parameters later.

  2. Ensure that a user account (a "role" in PostgreSQL terminology) exists that has the ability to create users and databases. This account becomes the username and password credential pair used within the configuration steps later.

    An example of a SQL command that creates such a user is:

        CREATE USER postgresql_envoy_charm
    WITH
     PASSWORD 'pass123'
     CREATEDB
     CREATEROLE;

  3. (Optional) Add a small machine to the model. The default machine size is not required, as this charm does little work.

     juju add-machine --constraints 'mem=512M cores=1 root-disk=10G'

Deploy

When deploying decoy-postgresql, you should use a placement directive (--to) to point to a machine that already exists.

juju deploy cs:tim-clicks/postgresql-envoy  [--to <machine-id>] --config username=<admin-username> --config password=<admin-password>

Post-deployment steps

  1. Ensure that remote connectivity is enabled PostgreSQL in pg_hba.conf

  2. Enable firewall access between the machine hosting the postgresql-envoy application

  3. If you omitted the --config parameters during juju deploy, you can add them now:

     juju config postgresql-envoy username=<admin-user> password=<password>

Relating

Other charms should be able to interact with this charm as they are with cs:postgresql.

When a relation is broken, the user account is removed.

Known Limitations and Issues

This charm is not suitable for production

Clean up:

  • When the application is removed, data persists. If you require a full clean up, then delete data manually.

Blockers for recommended usage

Security:

  • Leaks secrets to log files.

Relations:

  • postgresql-envoy does not understand the pgsql:db-admin relation endpoint.

About

A charm that connects a Juju model to an external PostgreSQL database

Topics

postgres juju postgresql juju-charm postgresql-client

Resources

Readme
Activity

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages