Additional Configuration

We are in the final step of the setup process.

This step is Optional but highly recommended to ensure the default IP Whitelist is set for the environments created by the Lifecycle app. This will help in securing the environments and restricting access to only the specified IPs or CIDR blocks.

Set Default IP Whitelist

Connect to the postgres database using the psql command line tool or any other database client.

Database password was auto generated during the infra setup and can be found retrieved from the app-postgres secret in the lifecycle-app namespace.
Retrieve the database password:

Run the following SQL commands to update the configuration:

⚠️

Note that the infra setup with the OpenTofu modules below will open your cluster to the world.
🛡️ Make sure to shield your cluster by implementing appropriate network policies and access controls after the initial setup.

Replace the defaultIPWhiteList under global_config.serviceDefaults with your actual IP whitelist or CIDR block to restrict access to the deployed environments.

Refresh config cache

This will refresh the configuration cache and apply the changes you made to the database for the Lifecycle app.

We are all set! 🎉 And ready to create our first PR based ephemeral environment.

Configure Application Create environment