Configure LILT to use Amazon RDS for managed database services instead of a local MySQL installation
<installer_dir>/mysql/rds_ca/
and set the option to generate the secret
file in install_scripts/run-mysql-migrations.sh
set option BOOTSTRAP_DB_CA
accordingly. If BOOTSTRAP_DB_CA="true"
The installer then will generate the
secret in the required namespace. If you would like to provide the secret from a
different process, you should generate the file as mentioned before.
lilt/environments/seed_custom_values/database.yaml
within the installer directory, serves as the central configuration point for all database-related components.
Note: If this overlay is not required for your deployment, ensure the file is cleared to prevent unintended configuration conflicts.
Configure the overlay YAML file with the following settings:
rds_host
: The RDS endpoint URL (optional if configured within the secret)rds_port
: Database connection port (default: 3306)rds_database_name
: Database schema name (currently limited to ‘lilt_dev’)rds_db_secret_name
: Reference to the Kubernetes secret containing database credentials (must exist in the deployment namespace)rds_db_username_key
: Secret key containing the database usernamerds_db_password_key
: Secret key containing the database passwordrds_db_host_key
: Secret key containing the RDS endpointrds_ca_secret
: Reference to the secret containing CA certificates (global-bundle)useExistingSecret.enabled: true
: Enforces the use of existing Kubernetes secrets for authenticationcreateSecret: false
: Prevents automatic generation of new database credentials