I forgot to reply to TTL idea.
Yeah this would be handy. But we can not TTL as we are used to. (Or maybe
we can?).
If you do
CREATE GENERATED USER WITH GENERATED PASSWORD AND TTL 3600;
That would live for 1 hour. Then it would be inserted with TTL into
system_auth.roles? The problem I see is th
First off, I want to say that the current scope of CEP-55 is a really good
start. The proposal to support generated role/user names (building on
CEP-24) addresses real security and operational pain points, and I think
this addition will be very useful to operators at scale.
One thought I had: do y
Hi Stefan,
Thanks for bringing this CEP for discussion. I think it's a good feature, but
I would like to have the ability to define some suffix or prefix to the name of
the role. Thinking from an operator point of view, this would help to visually
identify the type of role we are generating. Let's
This is a great feature to have Stefan. Like you already pointed, it pairs
really well with CEP-24. I am only concerned about scripts going crazy and
generating way too many accounts. Do you have any plans for throttling or
placing a limit on the number of auto-generated accounts that could be
crea
Hi list,
I would like to propose CEP-55. It is about the ability to create users /
roles without specifying names ourselves.
This is a very handy feature for systems where we want to have a way for
the system to generate user names / role names for us by some predefined
manner. If there is a comp
