[SERVER-37825] Add option to load cluster key from config file instead of keyFile Created: 30/Oct/18 Updated: 06/Dec/22 |
|
| Status: | Backlog |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Jonathan Reams | Assignee: | Backlog - Security Team |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Assigned Teams: |
Server Security
|
| Participants: |
| Description |
|
Since we've added support for loading config files from REST or exec endpoints (meaning we can store/access passwords without storing them on disk), we should be able to load the security.keyFile directly from the config file. This would reduce the number of secrets we have to manage on the filesystem and make it easier to automate deployments of mongodb. |