Possible to restore secret encryption key from backup?
We had a awkward restore of our TC 2018.1.1 server this weekend, we've recovered the database and the project settings from backups but secrets in those same project settings like vcs settings and project parameters aren't being decrypted, is it possible to recover the key used for this?
https://confluence.jetbrains.com/pages/viewpage.action?pageId=74845225#HowTo...-WhatEncryptionisUsedbyTeamCity
Thanks
Please sign in to leave a comment.
Hi David,
that shouldn't happen, secure keys should be retrieved properly after restoring the backup. Could you be more specific on what happened on the "awkward" restore? What are the symptoms of the "project parameters not being decrypted" issue? I'm asking this last question because it's important to understand what exactly the issue is. It's not the same that you get a wrong password error that you get an error when decrypting.
We were able to recover the DB but not the local data store so no build configs, logs, or artifacts. We had build settings backed up to VCS but there was some initial issues getting that restored due to some old corrupted builds that were no longer present in TC, there was a restore made from an older backup of the data disk before we resolved the VCS sync issues by deleting the invalid projects and resyncing.
Hidden "Password" project parameters are not being decrypted during run, instead they show the raw json value when set to txt or used by builds and we see these errors in our server health page.