I haven't looked at sqlserver stuff, but I would expect to manage roles with pulumi just like user creation. I've done that with AWS IAM users, as a parallel.
brave-motorcycle-67487
11/22/2022, 9:00 PM
A very different approach is to not have static users as much as possible, and use something like https://developer.hashicorp.com/vault/docs/secrets/databases/mssql to dynamically create users as your programs request them. That's a much more complicated setup and a bigger adjustment to make, but has good security benefits.
❤️ 1
a
acoustic-hamburger-30479
11/23/2022, 5:29 AM
This definitely looks nice, but is not currently on my roadmap. Looking for a similar way to execute a script on user creation. Btw, it’s not only for application users, but also for personal ones