Docker Secrets not usable in deployment. #1480
Description
Hi Vita, to avoid making a new topic - do you support docker secrets (_FILE) for sensitive env variables for the console containers? I'd rather that than an .env file.
Originally posted by @Lebowski89 in #1354
To make a new topic, I wanted to reference this.
Docker calls out the insecurities of using tokens/passwords in plain text files and states to utilize Docker Secrets to secure these credentials. PG allows the use of docker secret files with the _File appendation onto the env variable, which also place this secret at /run/secrets/(secretname)
This does not work with the api, nor the DB container as it just sets a token of "auth_token" when appending _FILE rather than reading the file and getting the secret value.