MPG: You can easily rotate your passwords now!

Fresh Produce
1

Fresh Produce: MPG just got more secure!

  • Has a teammate ever screen-shared your prod password to the whole world?
  • Did those “just for now” env vars end up in git history?
  • Did a ‘totally unrelated refactor’ start shipping your password to Datadog logs?

Well, worry no more! Introducing Password Rotation to Fly MPG ~
The new password rotation feature allows you to rotate any user password (and kick them out of your database) with the click of a button.

Wow! And how do I use it?
Open the Connect tab → hit Rotate Password → pick the user → confirm → done.
Your old password is invalidated instantly. Update your apps with the new one and carry on.

What about feedback?
We love feedback! :heart_suit: Please, start rotating passwords and let us know how can we make it better (:

Step-by-Step

Fly Connect Tab
Fly Connect Tab2766×1422 359 KB

Rotate Password Confirmation Modal
Rotate Password Confirmation Modal1920×1275 60.7 KB

Rotate Password - Password Rotated!
Rotate Password - Password Rotated!1920×1275 43.6 KB

7 Likes
2

Also worth mentioning:

  • DBs are only accessible from your Org’s private network;
  • Rotating passwords periodically is a good practice.
1 Like
3

Hi, Would this also rotate the configured secrets (like DATABASE_URL)? It would be nice to integrate it with vault infrastructure.

e.g., Infisical already supports automatic rotation for postgres and has fly.io integration too but it’s not possible to use with mpg to rotate anything right now AFAIK. Would be great if it would work together :).

1 Like