.tv-fallback{font-family:ui-monospace,SFMono-Regular,Menlo,Consolas,monospace;padding:2rem;color:#86efac;background:#030712;line-height:1.6}.tv-fallback a{color:#4ade80}.tv-fallback h1,.tv-fallback h2,.tv-fallback h3{color:#bbf7d0}.tv-fallback ul{padding-left:1.25rem}.tv-fallback li{margin-bottom:.5rem}

tvsguide.io · Projects · CockroachDB Dynamic Certs

CockroachDB Dynamic Certs

Dynamic certificate generator for secure CockroachDB deployments

A production-ready Spring Boot utility container that dynamically generates certificates for secure CockroachDB deployments. Automates the entire certificate lifecycle at container startup including CA, client, and node certificates.

Creates complete PKI infrastructure with PKCS#8 private keys, configurable Subject Alternative Names, and health endpoints for container orchestration. Designed for Kubernetes, Docker Compose, and CI/CD pipelines.

Tech: Java, Spring Boot, Docker, CockroachDB, PKI

Features

Certificate Authority and client certificate generation
Node certificates with configurable SANs
PKCS#8 private key support
Health endpoint for orchestration environments
Multi-platform support (AMD64 and ARM64)

Links: GitHub: timveil/dynamic-certs

More from the portfolio

This project is part of tvsguide.io, the personal portfolio of Tim Veil — software engineer and CIO at Two Bear Capital, previously at StarTree, Cockroach Labs, and Hortonworks. The full collection covers distributed systems, data infrastructure, JDBC drivers, AI services, build pipelines, real-time analytics, and a couple of personal apps. Each project ships with source code, tech notes, and links to live deployments where applicable.

BigQuery JDBC Driver — Modern JDBC driver for Google BigQuery, optimized for database IDEs with fast metadata support
Flight Chop — Passenger focused platform helping travelers understand turbulence and other conditions that may impact their flight
Leaves of Blocks — Free SwiftUI iOS puzzle game with no ads, no tracking, and no in-app purchases
Bloviate — Java library for generating realistic test data for databases
Quantum Beacon — Pipeline for analyzing company domains for Post-Quantum Cryptography (PQC) support
BenchBase — Multi-DBMS SQL benchmarking framework via JDBC
Two Bear Tracker — Portfolio tracking application with comprehensive analytics monitoring capabilities
Two Bear Capital API — Three-phase AI extraction API for VC pitch decks with Claude Sonnet 4.5
Two Bear Capital MCP Server — Model Context Protocol server for enterprise data access
Bear Stack — Modern monorepo template with clean architecture patterns
Fivetran Affinity Connector — Custom Fivetran connector for Affinity CRM data sync
Fivetran Carta Connector — Custom Fivetran connector for Carta equity management
Fivetran Standard Metrics Connector — Custom Fivetran connector for portfolio company metrics
Fivetran dbt — dbt project transforming multi-source data into BigQuery
Pinot TestContainers Example — Integration testing framework for Apache Pinot using TestContainers
CockroachDB Remote Client — Docker container for one-time CockroachDB administrative tasks
CockroachDB Single Node — CI/CD optimized Docker image for CockroachDB testing
CockroachDB Dynamic HAProxy — Dynamic HAProxy load balancer for CockroachDB clusters
CockroachDB Spring Examples — Spring Boot examples for connecting to CockroachDB

Browse the project index, read about Tim's background, follow the blog, or return to the homepage. Source code lives on GitHub; professional history is on LinkedIn.