<!-- 
RSS generated by JIRA (1001.0.0-SNAPSHOT#100246-sha1:7a5c50119eb0633d306e14180817ddef5e80c75d) at Thu Feb 08 23:08:08 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary add field=key&field=summary to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>FOLIO Jira</title>
    <link>https://folio-org.atlassian.net</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>1001.0.0-SNAPSHOT</version>
        <build-number>100246</build-number>
        <build-date>07-02-2024</build-date>
    </build-info>

<item>
            <title>[FOLIO-759] Update how db credentials are passed to modules in CI builds</title>
                <link>https://folio-org.atlassian.net/browse/FOLIO-759</link>
                <project id="10290" key="FOLIO">FOLIO</project>
                    <description>&lt;p&gt;Up to now it&apos;s been convenient to use environment variables, but really, db credentials should not be exposed by the &lt;tt&gt;/_/discovery/modules&lt;/tt&gt; endpoint.&lt;/p&gt;</description>
                <environment></environment>
        <key id="79404">FOLIO-759</key>
            <summary>Update how db credentials are passed to modules in CI builds</summary>
                <type id="10003" iconUrl="https://folio-org.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium">Task</type>
                                            <priority id="10002" iconUrl="https://dev.folio.org/assets/jira-priority/jira-p3.svg">P3</priority>
                        <status id="1" iconUrl="https://folio-org.atlassian.net/images/icons/statuses/open.png" description="The issue is open and ready for the assignee to start work on it.">Open</status>
                    <statusCategory id="2" key="new" colorName="blue-gray"/>
                                    <resolution id="-1">Unresolved</resolution>
                                                        <assignee accountid="5c706fbb47a54a6728e59df2">Wayne Schneider</assignee>
                                                                <reporter accountid="5c706fbb47a54a6728e59df2">Wayne Schneider</reporter>
                                    <labels>
                            <label>ci</label>
                            <label>for-next-sprint</label>
                            <label>sprint20</label>
                    </labels>
                <created>Thu, 3 Aug 2017 14:52:05 +0000</created>
                <updated>Tue, 15 Jan 2019 11:53:58 +0000</updated>
                                                                                <due></due>
                            <votes>0</votes>
                                    <watches>5</watches>
                                                    <timespent seconds="900">15 minutes</timespent>
                                <comments>
                                                            <comment id="190853" author="5c706fbb47a54a6728e59df2" created="Thu, 3 Aug 2017 15:05:13 +0000"  >&lt;p&gt;We can use this issue to work out a rough model for more secure production deployment.&lt;/p&gt;</comment>
                                                            <comment id="190855" author="557058:b8e64633-1f7c-402d-9caf-9959a5ba5d0d" created="Wed, 9 Aug 2017 13:18:54 +0000"  >&lt;p&gt;&lt;a href=&quot;https://folio-org.atlassian.net/secure/ViewProfile.jspa?accountId=5c706fbb47a54a6728e59df2&quot; class=&quot;user-hover&quot; rel=&quot;5c706fbb47a54a6728e59df2&quot; data-account-id=&quot;5c706fbb47a54a6728e59df2&quot; accountid=&quot;5c706fbb47a54a6728e59df2&quot; rel=&quot;noreferrer&quot;&gt;Wayne Schneider&lt;/a&gt; what&apos;s this about?&lt;/p&gt;</comment>
                                                            <comment id="190858" author="557058:b8e64633-1f7c-402d-9caf-9959a5ba5d0d" created="Wed, 9 Aug 2017 13:22:35 +0000"  >&lt;p&gt;Note: how does it relate to the refactoring Okapi services as Internal Modules?&lt;/p&gt;</comment>
                                                            <comment id="190860" author="5c706fbb47a54a6728e59df2" created="Tue, 15 Aug 2017 03:02:40 +0000"  >&lt;p&gt;&lt;a href=&quot;https://folio-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Ab8e64633-1f7c-402d-9caf-9959a5ba5d0d&quot; class=&quot;user-hover&quot; rel=&quot;557058:b8e64633-1f7c-402d-9caf-9959a5ba5d0d&quot; data-account-id=&quot;557058:b8e64633-1f7c-402d-9caf-9959a5ba5d0d&quot; accountid=&quot;557058:b8e64633-1f7c-402d-9caf-9959a5ba5d0d&quot; rel=&quot;noreferrer&quot;&gt;Jakub Skoczen&lt;/a&gt; &amp;#8211; see for example &lt;a href=&quot;http://folio-testing-backend01.aws.indexdata.com:9130/_/discovery/modules&quot; class=&quot;external-link&quot; rel=&quot;nofollow noreferrer&quot;&gt;http://folio-testing-backend01.aws.indexdata.com:9130/_/discovery/modules&lt;/a&gt; &amp;#8211; we are using environment variables to pass the database credentials to the RMB-based modules, and those credentials are exposed on the Okapi discovery endpoint. This is not how we would want do it in production (though it was very convenient to get things up and running). We had a discussion on Slack about it and agreed to open up an issue.&lt;/p&gt;

&lt;p&gt;One way to address the issue is to put the credentials in a configuration file, possibly secured as documented here: &lt;a href=&quot;https://github.com/folio-org/raml-module-builder#securing-db-configuration-file&quot; class=&quot;external-link&quot; rel=&quot;nofollow noreferrer&quot;&gt;https://github.com/folio-org/raml-module-builder#securing-db-configuration-file&lt;/a&gt;. This may require building a new Docker image for deployment based on the Jenkins artifact with the config file added and the entry point updated, or some other method of invoking the Docker image.&lt;/p&gt;</comment>
                                                            <comment id="190864" author="5c706fbb47a54a6728e59df2" created="Fri, 16 Mar 2018 16:00:33 +0000"  >&lt;p&gt;Updated issue name and description to make it more precise.&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10000">
                    <name>Blocks</name>
                                            <outwardlinks description="blocks">
                                        <issuelink>
            <issuekey id="79451">FOLIO-1134</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10000" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummarycf">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10057" key="com.atlassian.jira.plugin.system.customfieldtypes:select">
                        <customfieldname>Development Team</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10144"><![CDATA[Core: Platform]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10019" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0|hzxwsv:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10020" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10024" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>[CHART] Date of First Response</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Wed, 9 Aug 2017 13:18:54 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                </customfields>
    </item>
</channel>
</rss>