mirror of
https://github.com/plankanban/planka.git
synced 2025-07-25 08:09:44 +02:00
63c073e31e
Docker secrets are exposed as files in `/run/secrets/` inside the
container instead of as environment variables. To support deployments
where the passwords are stored in secrets, this patch adds support for
loading the `SMTP_PASSWORD`, `SECRET_KEY` and the database password from
files, using the `__FILE` suffix convention found in many docker images.
The database password is part of the `DATABASE_URL` environment
variable, if a password is used at all. To support injecting the
password into the DATABASE_URL without having to use the whole URL as
the secret, the `start.sh` replaces the string `${DATABASE_PASSWORD}` in
the `DATABASE_URL` environment variable by the contents of the
`DATABASE_PASSWORD` variable, which can now also be loaded from the
corresponding file passed in `DATABASE_PASSWORD__FILE`.
These changes are backwards compatible since they only load the `__FILE`
suffix version if the original variable was not set the `__FILE` one
is set.
Added comments in docker-compose.yml with examples for discoverability
of the feature. Tested this on top of 2.0.0-rc.2.
|
||
|---|---|---|
| .. | ||
| api | ||
| config | ||
| db | ||
| patches | ||
| private/attachments | ||
| public | ||
| test | ||
| utils | ||
| views | ||
| .editorconfig | ||
| .env.sample | ||
| .eslintignore | ||
| .gitignore | ||
| .npmrc | ||
| .sailsrc | ||
| app.js | ||
| constants.js | ||
| healthcheck.js | ||
| package-lock.json | ||
| package.json | ||
| requirements.txt | ||
| start.sh | ||
| version-template.ejs | ||
| version.js | ||