Create module for credentials and matching K8s manifest

[marcel-wollschlaeger]

Create a user/password credential pair in a Vault and export manifest resource.

This can then be reused to create multiple database users and manifest files.

E.g. for neuris-infra, I could then do something like:

locals {
  db_users = toset(["migration", "caselaw", "norms", "search", "literature"])
}


module "database_users" {
  source   = "/Users/marcel/Development/git/digitalservice/terraform-modules//stackit-credential-manifest"
  
  for_each = local.db_users
  vault_name                 = "postgres"
  user                       = each.key
  manifest_name              = "database-${each.key}-credentials" 
  manifest_file              = "../../manifests/overlays/staging-stackit/database-${each.key}-secret.yaml"
  secret_manager_instance_id = local.secret_manager_instance_id
  kubernetes_namespace       = local.kubernetes_namespace
}

Or would this better be located at a local modules folder within neuris-infra?

[HartmannVolker]

I think we should actually adjust the stackit-postgres-db module, because stackit postgres already supports setting up multiple users for the DB.

[marcel-wollschlaeger]

Superseded by #22