WE are planning to use AstraDB for our project. To connect AstraDB from java application, we are using secure-connect-<database>.zip. My understanding it internally uses certificate to connect AstraDB secularly. If so, do we need to rotate the zip file every year as certificate basically will have expiry date.
@praveenkg, good question! As of this writing, it comes with a 10-year validity. We don't need to rotate the Secure Connect Bundle (SCB), but instead, you could consider rotating [as frequently as you need] the application tokens. In your Java application, you will be using the ClientID, ClientSecret along with the SCB to interact with the AstraDB cluster.
You could refer to this documentation on how to manage application tokens. I hope this helps!
The certificate included in your secure connect bundle is valid for 10 years from the time that you've created your Astra database so there is no requirement to rotate it every year.
As a side note, we recommend that you delete local copies of your bundle since it contains credentials and connection details to your database. If you are granting access to someone in your organisation, you can download a new copy of the secure bundle from the Astra dashboard so it is not necessary to keep a local copy. Cheers!
7 People are following this question.
