Hacker News new | ask | show | jobs
by netvisao 3004 days ago
I am curious as to how it handles those race conditions where a connection is made with the older credentials just after the time the rds master key rotates, or a connection is made with the newer credentials just before the time the rds client key rotates. Short of using two credentials accounts ...
1 comments
ranman 3004 days ago
there’s a pretty nifty 4 stage rotation mechanism that solves most, but not all, of those race conditions. More info on it in the post and the docs.
link
netvisao 3003 days ago
Are we talking about these? createSecret setSecret testSecret finishSecret

These were mentioned around the custom rotation strategy, any pointers to docs describing how it is done if the secret is an RDS Secret?

link