refactor(dbcrypt): move key revocation process to in-api #77

johnstcn · 2023-09-07T14:31:16Z

The current dbcrypt rotation logic

Requires direct access to the database
May fail if a coderd instance is still running with the old key and inserts encrypted data when we attempt to revoke the old key.

Moving it to an in-API endpoint would allow for a more ergonomic key rotation process:

The replica that services the request can validate that it has the correct keys and is not trying to revoke its active key
The rotation request can now be performed by the slim CLI
The rotation request can now be performed without direct database access

johnstcn mentioned this issue Sep 7, 2023

feat(coderd): connect dbcrypt package implementation coder/coder#9523

Merged

johnstcn changed the title ~~dbcrypt: move recvocation process to in-api~~ dbcrypt: move key revocation process to in-api Sep 7, 2023

johnstcn changed the title ~~dbcrypt: move key revocation process to in-api~~ refactor(dbcrypt): move key revocation process to in-api Sep 7, 2023

johnstcn mentioned this issue Sep 7, 2023

Encrypt OIDC access token in database coder/coder#7640

Closed

github-actions bot closed this as not planned Won't fix, can't repro, duplicate, stale Mar 14, 2024

johnstcn reopened this Mar 14, 2024

matifali transferred this issue from coder/coder Sep 27, 2024

coder-labeler bot added the enhancement label Sep 27, 2024

matifali removed the enhancement label Oct 16, 2024

Provide feedback