From 14b9184e32d5bc6247029d62eb8ddc8689eb252b Mon Sep 17 00:00:00 2001
From: Chris DiMartino <cdimartino@usertesting.com>
Date: Sat, 20 Feb 2021 11:41:18 -0500
Subject: [PATCH] Ensure no disallowed special characters in pass

The auto-generated RDS password for my cluster contained an `@`, ultimately resulting in the password not working. I realized when attempting to change it that there is a disallowed special characters list in rds passwords: `"'@/`. I've ensured that the disallowed special chars are not present in the password generated here.
---
 main.tf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/main.tf b/main.tf
index 1290076..408fa02 100644
--- a/main.tf
+++ b/main.tf
@@ -19,6 +19,7 @@ resource "random_password" "master_password" {
 
   length  = 24
   special = true
+  override_special = "!#$%&*()-_=+[]{}<>:?" # Must not contain any of `/'"@` as per AWS RDS password rules
 }
 
 data "aws_secretsmanager_secret_version" "stored_db_creds" {