TODO.md

#Todo

the-flask-app

• add database url to flask app
• add database cloud configs (nomad)
• use vault dynamic secrets to authenticate for postgres
• add command run at first of postgres (load sample data)
• use consul service discovery
• use template rendering for dynamic port mapping
• use Consul Connect integration
• refactor and beautify Vagrantfile

the-flask-app-tls

• copy the-flask-app configurations
• add Vault CA for SSL and TLS connection in Nomad cluster
• turn off rpc_upgrade_mode and reload nomad on Vagrantfile
• make everything runnable
• rotate gossip encryption for consul
• refactor and beautify Vagrantfile

docker swarm mode example

• create docker-compose.yml
• create swarm cluster
• add docker secrets to static docker-compose
• complete readme
• application read password from file, or is there any way to not do that ?
• add dynamic secrets for the-flask-app inside Vault
• add static secrets for the-flask-database inside Vault

kubernetes mode example

• use terraform as your IaC
• use secret file
• test postgres password
• export secret file on startup for container
• document