External access by default

[Nainterceptor]

Hello,

We've concerns from our security team :
By default, an arango deployment will have an external access via a loadbalancer, it will leads to a security issue, a database will be available worldwide with empty root password.

Your point of view should be developers-friendly : have a ready to use database for developers, and this database should be tweaked for production.

But, experience shown that people don't tweak configurations even if you say to do it in the bolder font, size 72.
That's why we have a lot of unsecured mongodb databases in free access over the internet. Even if mongodb always recommand to bind to local network... (No network access is better than password)

We recommand to have default value of spec.externalAccess.type to "None".
It's the common configuration about ingress for all well-known chart configurations.
Side effects :

• Will be breaking change
• Will prevent load balancer creation billing for managed k8s clusters

Best regards,
Gaël

[kalavt]

Any update? it's serious security issue to open access widely to public by default.

[jwierzbo]

@kalavt Externall access will be disabled in the next minor version (1.3.0).