HereHere
Reputation: 762
docker-compose secrets without swarm
I don't want to use docker secrets with swarm and I discovered that it's possible to do that.
Basically docker just mounts /run/secrets inside docker container, but when I enter the newly built docker container and do echo $POSTGRES_PASSWORD_FILE I get the path to my secret file.
root@94a0f092eeb1:/# echo $POSTGRES_PASSWORD_FILE
/run/secrets/db_password
Here is my docker-compose.yml file
version: '3.1'
services:
postgres:
image: postgres:9.4
container_name: postgres
environment:
POSTGRES_USER: "db_user"
POSTGRES_PASSWORD_FILE: /run/secrets/db_password
POSTGRES_DB: "my_db"
secrets:
- db_password
volumes:
- ./postgres:/var/lib/postgresql/data
expose:
- 5432
secrets:
db_password:
file: ./POSTGRES_PASSWORD.txt
Is my password set correctly/ Is there something wrong with my file?
Upvotes: 19
Views: 17712
Answers (1)
HereHere
Reputation: 762
Ok, so all I had to do is to remove
volumes:
- ./postgres:/var/lib/postgresql/data
I'll try to figure out how to fix it, but essentially I answered my own question.
Here is a working example of docker-compose.yml file with secrets without using docker swarm:
version: '3.1'
services:
postgres:
image: postgres:9.4
container_name: postgres
environment:
POSTGRES_USER: "db_user"
POSTGRES_PASSWORD_FILE: /run/secrets/db_password
POSTGRES_DB: "my_db"
secrets:
- db_password
ports:
- "8888:5432"
secrets:
db_password:
file: ./POSTGRES_PASSWORD
Upvotes: 15
Related Questions
- Secrets are not available in Docker container
- Handling secrets inside docker container without using docker swarm
- How to set Docker secret as an environment variable
- How do I configure a secret in docker compose?
- Portainer Docker Swarm import secrets to compose
- docker swarm: use secrets for enviroments variable
- Why do I need to be in Swarm mode to use Docker secrets?
- Creating docker secrets inside container
- Using Docker Secrets in Container
- docker-compose swarm without docker-machine