This message was deleted.
# general
s
This message was deleted.
b
I haven't looked at sqlserver stuff, but I would expect to manage roles with pulumi just like user creation. I've done that with AWS IAM users, as a parallel.
A very different approach is to not have static users as much as possible, and use something like https://developer.hashicorp.com/vault/docs/secrets/databases/mssql to dynamically create users as your programs request them. That's a much more complicated setup and a bigger adjustment to make, but has good security benefits.
❤️ 1
a
This definitely looks nice, but is not currently on my roadmap. Looking for a similar way to execute a script on user creation. Btw, it’s not only for application users, but also for personal ones