144 questions
0
votes
0
answers
74
views
Docker secrets in docker compose creates secret but empty
I have two containers - one is database and second my app.
Each container has attached secret.
After running docker compose, secrets for database container is successfully created but for app ...
- 2,726
0
votes
0
answers
182
views
Unable to Pass Secrets for Docker Image Build in GitHub Actions
I'm having trouble passing a secret to build a Docker image through GitHub Actions. Even when I set the variable containing the secret as an environment variable, it seems like the secret is not being ...
- 123
0
votes
0
answers
246
views
Docker Secrets do not work with postgres container
I have this docker compose file
services:
trader:
build: .
secrets:
- db_name_env
- db_password_env
- db_user_env
- app_env
environment:
APP_ENV_FILE: /run/...
- 1
4
votes
2
answers
2k
views
How to use docker compose secrets with a non-root user when a file is required
Situation
The current (07/2024) docker compose documentation states (falsely) that there is a long-syntax when using 'docker secrets' that can defines the name, uid, gid and mode of the mounted file
...
- 96
1
vote
1
answer
545
views
How to use secrets in DockerFile when building a Windows container?
I need to pass some secrets to a docker file to build my Windows container image.
I learned how not do do it but not how to do it properly. For example, it's unsecure to pass the secret via BUILD-ARG ...
- 826
0
votes
1
answer
419
views
Dokcer build image --secret in Jenkins Pipeline
Here is my dockerfile
FROM node:20-alpine3.18
WORKDIR /app
COPY package*.json .npmrc ./
RUN --mount=type=secret,id=npmrc \
NPM_TOKEN=$(cat /run/secrets/npmrc) \
npm ci --production
COPY . .
...
0
votes
0
answers
401
views
Docker build secrets in CodePipeline stages in CDK
I am using a private Github repo in my CodePipeline build, as our Docker container involves using poetry install to pull dependencies during the creation of the image that gets uploaded to ECR.
I am ...
1
vote
1
answer
578
views
How to prevent docker exec from viewing environment variables
I use Docker to run applications with several sensitive values as environment variables, such as mysql_pw, api_key, etc. These can all be viewed inside the container using the docker exec command. I'...
- 648
0
votes
1
answer
142
views
Creating a docker swarm service with secret using docker api
I'm working on creating a Docker service using dockerode, which is a wrapper around the Docker API. I'm having trouble understanding how to use the Secrets array when creating a service. The Docker ...
0
votes
1
answer
395
views
Docker build-push action: Error while parsing json secret
I have a secret file secret.json:
{
"key1": "value_1",
"key2": "value_2"
}
and a simple Dockerfile ./src/Dockerfile:
# syntax=docker/dockerfile:1
FROM ...
- 77
2
votes
1
answer
3k
views
Docker Compose Secret from Environment Variable
For the life of me I have been unable to replicate using an environment variable to populate a secret within docker compose.
I have it working with a straightforward docker build command I.E.
docker ...
- 67
0
votes
1
answer
246
views
Dockerfile `RUN --mount=type=ssh` does'nt work with ssh repository dependancies inside package.json / package-lock.json
I tried to build a nodejs application with ssh external dependancies with and without package-lock.json in a Dockerfile.
It seems that --mount=type=ssh doesn't works recursively when cloning external ...
0
votes
1
answer
678
views
PostgreSQL In Kubernetes cannot use DEFAULT_USER from secret but can from value
I just can't figure out why it is working the way it is.
If I
use POSTGRES_PASSWORD with hardcoded value in environment it works
use POSTGRES_PASSWORD from a secret with valueFrom: secretKeyRef: it ...
user16255942
0
votes
1
answer
331
views
Docker databse initialisation in /docker-entrypoint-initdb.d no access to enviroment variables
I have an influx db image (bitnami/influxdb:2.6.1-debian-11-r34) and a mariadb image (mariadb:10.7.6-focal).
Both allow to run initial setup by placing scripts in to the /docker-entrypoint-initdb.d ...
- 455
0
votes
1
answer
645
views
Issue with Passing dockerbuildKit Secrets to Docker Using Devcontainer
I am experiencing a problem while attempting to pass a Personal Access Token (PAT) as a secret to Docker, utilizing the --secret flag in a devcontainer setup. I have configured the following lines in ...
- 3,769
5
votes
1
answer
2k
views
How to secure credentials for CIFS volume in docker stack - secrets?
Can secrets be used to store the username and password for use in a volume definition in a stack yaml file?
If so, how?
If not, then how best to not have to include credentials in the yaml file?
For ...
- 349
0
votes
3
answers
1k
views
Unable to deploy grafana image using helm
I'm new to grafana and prometheus, started working on it from last few days. I'm having some issues. I build a new grafana image and I am using the official helm repo to install it. On using the ...
- 177
24
votes
3
answers
12k
views
How to Use Docker Build Secrets with Kaniko
Context
Our current build system builds docker images inside of a docker container (Docker in Docker). Many of our docker builds need credentials to be able to pull from private artifact repositories....
- 459
0
votes
1
answer
305
views
add a secret to container without exposing file locations to source control
I want to add my aws credentials file to a docker container, so it can access AWS apis.
The credentials file exists in my host machine at /home/user/.aws/credentials
When running the container from ...
- 3,610
0
votes
1
answer
1k
views
Docker Secret to env variable of database string connection Not being parsed/recognized by sql alchemy
I'm trying to hide some sensitive information about my application with docker secrets.
I did great in most of them but I'm having trouble with the env of the database connection.
When I pass the ...
1
vote
1
answer
696
views
az acr build dockerfile secret declaration
I am trying to pass secrets using build secret argument (values passed through github secrets) as mentioned in Microsoft documentation, how should I utilize these secrets in my dockerfile?
Currently I'...
3
votes
1
answer
4k
views
Pass docker-compose secret to Dockerfile
I'm trying to pass docker-compose secrets to a Dockerfile, a feature that should be supported in docker-compose v2.5.0. For some odd reason, the secret I'm passing isn't recognized.
I loosely followed ...
- 185
0
votes
1
answer
68
views
git is not ignoring docker_secrets file even when it is added to .gitignore [duplicate]
docker_secrets
The above line is in my .gitignore file.
Yet it is still tracking changes to that file.
3
votes
0
answers
1k
views
Use Docker-Secrets for Postgres-Credentials in Spring (bis)
I have the same problem than here and here, but not the same cause, I have no extra character in my password file.
I am working with odoo, Postgres and docker-compose. I want to use secrets for the ...
- 1,876
0
votes
0
answers
29
views
Concern of Python application Being stolen by other developers [duplicate]
Context-
I have a python script which takes in webcam video face as input and does some operations to the face to verify the person. I will forward this script to the android developers who will put ...