What is the convention/best practice store the database related information

asked 2016-07-29 10:37:21 -0600

I would like to know the convention/best practice that is followed in the puppet managed projects for storing database information.

Do you store it in YAML/JSON to be called in hiera or in Consul?

How do you store secrets like username/password for DB in keys?

Please suggest some best mechanisms and examples if any.

edit retag flag offensive close merge delete


I may come back and answer more completely later, but hiera-eyaml is a common way of storing encrypted secrets that the puppetmaster can access. You also can use consul/vault and use valut as a hiera backend for secret management.

DarylW gravatar imageDarylW ( 2016-07-29 13:39:36 -0600 )edit