Darko Križić
Darko Križić
I just see your issue. I am running Traefik on Azure AKS (but not behind the Azure Application Gateway). I needed those settings to make the Load Balancer "green": ```...
I found a workaround by creating a custom certificate like (my database is called master) ``` # Create key and certificate for our CA openssl genrsa -out ca.key 2048 #...
Wouldn't it make more sense to remove the SAN entries with trailing dots from the generated certificate?
> [@dkrizic](https://github.com/dkrizic) does your client accept u/p in the query portion of the URI? > > ``` > postgresql://master-primary.persistence.svc:5432/stepca?user=step-ca&password=Lgrd%7DoKjF287_nUn6%2C%3Ds%3C%3AO%7C > ``` **Yes**, this connection string works. My Postgres client is:...
BTW: My workaround is to use the urlencode from terraform: postgresql://step-ca:${**urlencode**(data.kubernetes_secret.step-ca-password.data.password)}@master-primary.persistence.svc:5432/stepca (I know, my password is compromised, but it is only a PoC I am working on)