[Feature Request] Runtime secrets #45642
Labels
kind/feature
Functionality or other elements that the project doesn't currently have. Features are new and shiny
Comments
lonix1
added
kind/feature
This was referenced May 28, 2023
|
This is a duplicate, more-or-less of #13490. While #13490 is less concrete, it's still the best place to start thinking about how secrets should be implemented in the future. I'll make a note to link back here when we come up with a basic design proposal/set of principles and a better tracking issue in the feature. |
|
@neersighted Ok thanks for filing it in the right place. But please tell me, does that issue cover "runtime secrets" too? (So this feature won't get "lost".) |
|
@thaJeztah Does that linked issue cover this "runtime secrets" feature request too? So it isn't "forgotten". |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
There have been requests for runtime (/mounted) secrets going back years. (I'm not referring to build-time secrets.) Unfortunately this is not currently supported.
Here's a question on StackOverflow with 10k views so far. There was a PR for this feature, but was abandoned.
The typical workaround is to create a one-node swarm. Although that works, it's a pain to set up and maintain just to get the secrets feature. Also, it's not possible to do that with docker rootless as the overlay network doesn't work, so swarm isn't available.
Now that
docker composeis integrated into the core cli tool, please consider adding this feature. It's something people have asked for going back many years because it's not just useful, but incredibly important: a core part of a deployment's security.The text was updated successfully, but these errors were encountered: