Amazon RDS

[William Reade]

On Fri, 2012-11-09 at 00:54 -0200, Marcos Barbosa wrote:
> 
> My questions:
> - How I set host address variable? The user and password I can define
> myself inside script (with relation-set, I think), but host address is
> generate by Amazon.
> - How I get the keys for Amazon form environments.yaml?
> 
> Best regards.

You can't get the AWS keys from environments.yaml; this is intended to
limit the possible damage caused by malicious charms and/or compromised
machines.

You should probably put "access-key" and "secret-key" settings in your
charm's config.yaml, and use those; you will have to set them explicitly
for each service, but that shouldn't be an excessive burden, and the
keys will only be accessible [0] to units of the RDS service (and
potentially to any subordinates you deploy with it).

The charm can then sit there and do nothing until its config is changed
to include valid keys; at this point it can create the RDS, note down
the necessary details (including hostname, which you surely know because
you just created it) and pass them over to interested units via
relation-set.

Does that help?

Cheers
William
>         
>         -- 
>         Marcos Barbosa <marcosestevesbarbosa at gmail.com>
>         
> 
> 
> 
> -- 
> Marcos Barbosa <marcosestevesbarbosa at gmail.com>
> 

[0] I'm not actually sure of the current status of the security
boundaries; but if they aren't yet in place they will be at some stage,
and you definitely want your charm to keep working as before when that
happens ;).