Database passwords must be secure.
I was looking into Digital Ocean and decided to spin up a managed Redis instance.
I run serverless functions and want to use Redis as a way to persist data quickly. With serverless functions, the IP address will change with each new server that spins up. There's no way to whitelist IPs in most instances.
So, a very long and secure password is required. Services such as Vercel recommend going the overkill route with a 32-digit password.
Trying this out led me to the problem. There's no way to change the password. Not even to get a new auto-generated password. This discovery feels very insecure.
If I were to use Digital Ocean and a developer accidentally checked in the password, there would be no way to change it. I would have to migrate to an entirely new server to get a new password.
Please - add an option to change the password easily. Ideally, I should control the password for serverless functions that can't have firewall rules in place.