1# `edge-backend`
2
3## New Secrets in secret manager
4edge-backend-jwt-secret
5edge-backend-launch-darkly-sdk-key
6edge-sql-password
7
8## cron manual steps
9
10In order to apply the principle of the least privilege, we can `manually` give the service account the needed permission to the `cron` schema as follows:
11
12NOTE: You must omit the `-i` flag when running `cloud-sql-proxy`, in order to successfully `GRANT` these permissions as the `postgres` user.
13
14```sql
15CREATE EXTENSION IF NOT EXISTS pg_cron;
16GRANT ALL ON SCHEMA cron TO "bff-sa@${project_id}.iam";
17GRANT ALL ON ALL TABLES IN SCHEMA cron TO "bff-sa@${project_id}.iam";
18```
View as plain text