Support docker secrets for sensitive environment variables #802

Closed
opened 2021-02-21 17:29:40 +00:00 by davmin · 1 comment

Supporting docker secrets allows docker-compose users to easily keep secrets out of version control. Docker secrets are mounted in the container at /run/secrets/

e.g.

services:
  api:
    image: vikunja/api
    environment:
      VIKUNJA_DATABASE_HOST: db
      VIKUNJA_DATABASE_PASSWORD_FILE: /run/secrets/vikunja_database_pass
      VIKUNJA_DATABASE_TYPE: mysql
      VIKUNJA_DATABASE_USER: vikunja
      VIKUNJA_DATABASE_DATABASE: vikunja
      VIKUNJA_MAILER_ENABLED: 'true'
      VIKUNJA_MAILER_HOST: "smtp.gmail.com"
      VIKUNJA_MAILER_SKIPTLSVERIFY: 'false'
      VIKUNJA_MAILER_PORT: 587
      VIKUNJA_MAILER_USERNAME: "alerts@gmail.com"
      VIKUNJA_MAILER_PASSWORD_FILE: /run/secrets/vikunja_mailer_pass
      VIKUNJA_MAILER_FROMEMAIL: "alerts@gmail.com"
    volumes:
      - ./files:/app/vikunja/files
    secrets:
      - vikunja_database_pass
      - vikunja_mailer_pass
secrets:
  vikunja_database_pass:
    file: vikunja_database_pass
  vikunja_mailer_pass:
    file: vikunja_mailer_pass

Supporting docker secrets allows docker-compose users to easily keep secrets out of version control. Docker secrets are mounted in the container at /run/secrets/<secret> e.g. ``` services: api: image: vikunja/api environment: VIKUNJA_DATABASE_HOST: db VIKUNJA_DATABASE_PASSWORD_FILE: /run/secrets/vikunja_database_pass VIKUNJA_DATABASE_TYPE: mysql VIKUNJA_DATABASE_USER: vikunja VIKUNJA_DATABASE_DATABASE: vikunja VIKUNJA_MAILER_ENABLED: 'true' VIKUNJA_MAILER_HOST: "smtp.gmail.com" VIKUNJA_MAILER_SKIPTLSVERIFY: 'false' VIKUNJA_MAILER_PORT: 587 VIKUNJA_MAILER_USERNAME: "alerts@gmail.com" VIKUNJA_MAILER_PASSWORD_FILE: /run/secrets/vikunja_mailer_pass VIKUNJA_MAILER_FROMEMAIL: "alerts@gmail.com" volumes: - ./files:/app/vikunja/files secrets: - vikunja_database_pass - vikunja_mailer_pass secrets: vikunja_database_pass: file: vikunja_database_pass vikunja_mailer_pass: file: vikunja_mailer_pass ```
Author

Not sure how I missed that this already one of the few open tickets. vikunja/api#704

Not sure how I missed that this already one of the few open tickets. https://kolaente.dev/vikunja/api/issues/704
Sign in to join this conversation.
No Milestone
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: vikunja/vikunja#802
No description provided.