PostgreSQL TLS

To enable TLS within the deployment of Nautobot and the embedded Bitnami PostgreSQL subchart set the following helm values:

postgresql:
  volumePermissions:
    enabled: true
  tls:
    enabled: true
    autoGenerated: true
    # certificatesSecret: "nautobot-postgres-crt"
    # certFilename: "tls.crt"
    # certKeyFilename: "tls.key"
    # certCAFilename: "ca.crt"

This will autogenerate certificates for use with Postgres. Unfortunately, to force Nautobot to use Postgres over SSL a custom nautobot_config.py must be created and the following values set in nautobot_config.py:

DATABASES["default"]["OPTIONS"] = {"sslmode": "require"}