User secret rotation Postgres Operator


Percona Postgres operator can auto provision Postgres user secrets. But is there a way to configure secret rotation?

Also, i did test deleting the pg cluster secret.
In that case the operator, does not create a new secret and we are no longer able to view credentials. Then we’re obliged to remove the cluster and re-create it? Or is there a mechanism to recreate the secret?



You can create the same secret manuall and Operator will pick it up.
You can also create the secret with new credentials and Operator will update them in the database. (It is similar to changing the password in the secret).

UPD1: It might have being affected by this bug which is fixed in main and will be released along with 2.2.0: [K8SPG-360] Password management does not work via secret - Percona JIRA