Is it possible to enable RDS connection encryption in Spryker PaaS?
We are getting a requirement to enable the encrypted connection. I don't see any obvious settings or docs, but I see it would pe possible to provide 'options' to PDO.
Would it be acomplishable in default spryker PaaS out of the box (just changing project code)? Or would we need to have infrastructure setup?
Answers
-
I'd like to clarify the type of encryption you're referring to. In Spryker Cloud, SSL is automatically enabled for connections to the RDS database, ensuring secure, encrypted connections. Additionally, our database is kept within a VPC, eliminating exposure to the public network. With these security measures in place, our setup is sufficiently secure.
If you believe additional security measures are needed, it might involve changes at both the project code and infrastructure levels. For detailed guidance, I recommend creating a support ticket, allowing our cloud and solution architects to assist you with your request.
Cheers :)
0 -
Hi @amansilla , thanks for answering. Can you give me a hint on where to check this?
I tried running the debugger to see how the database connection was instantiated and I saw no details on tls encryption. Or is this something happening by default on AWS?
I also didn't see any obvious settings by default in the config for production, unless spryker is adding something else that I'm missing.
This is comming from a security check by our customer, they want to ensure that sensitive data is encrypted in transport in all layers.0 -
To the best of my understanding, there's typically no need for additional setup at the project level to enable SSL for database connections, as AWS provides this feature by default. While I can't disclose specific customer information, you might consider reaching out through a support ticket for further details.
Cheers ;)0 -
Thanks again :) I guess the most empiric test would be to disallow non encrypted connections in our -dev envirnoment :D
0
Categories
- All Categories
- 42 Getting Started & Guidelines
- 7 Getting Started in the Community
- 8 Additional Resources
- 7 Community Ideas and Feedback
- 66 Spryker News
- 883 Developer Corner
- 747 Spryker Development
- 83 Spryker Dev Environment
- 360 Spryker Releases
- 3 Oryx frontend framework
- 33 Propel ORM
- 68 Community Projects
- 3 Community Ideation Board
- 30 Hackathon
- 3 PHP Bridge
- 6 Gacela Project
- 22 Job Opportunities
- 3.2K 📜 Slack Archives
- 116 Academy
- 5 Business Users
- 370 Docker
- 551 Slack General
- 2K Help
- 75 Knowledge Sharing
- 6 Random Stuff
- 4 Code Testing
- 32 Product & Business Questions
- 67 Spryker Safari Questions
- 50 Random