Nowadays I work on dynamic credential change of postgresql.
Yes, my Vault can rotate creds of Postgresql as described in documentation. Also VaultSharp can read creds from Vault. The problem is that when the creds are changed by Vault, the app can’t aware of creds change. The connection context is created at application startup and the app wants to use existing connection context all the time.
Changing db credentials dynamically is a good concept and approach but when a dotnet app cannot re-create connection context when creds are changed, it is not applicable on a real world scenario. Probably I miss something because if technically there is no solution for this problem, dynamic creds change cannot be used by c# apps. The documentation mentions about app restart; it is totally useless. Instead of restarting app in every creds change, using static creds instead of dynamic creds is more feasible.
Could you please advise how do you guys use/run Vaultsharp and how to figure out this problem?
Thanks & Regards