Closed lmjelstad closed 3 years ago
The Postgres secrets are written to local/secrets/.envs https://github.com/Skatteetaten/terraform-nomad-postgres/blob/master/conf/nomad/postgres.hcl#L89
local/secrets/.envs
This location is open in Nomad UI, and the username/password can be read
Secrets should not be available in Nomad UI
Deploy Postgres module and look at files in Nomad UI
Move secrets to secrets/.envs
secrets/.envs
Current behaviour
The Postgres secrets are written to
local/secrets/.envs
https://github.com/Skatteetaten/terraform-nomad-postgres/blob/master/conf/nomad/postgres.hcl#L89This location is open in Nomad UI, and the username/password can be read
Expected behaviour
Secrets should not be available in Nomad UI
How to reproduce?
Deploy Postgres module and look at files in Nomad UI
Suggestion(s)/solution(s) [Optional]
Move secrets to
secrets/.envs
Checklist (after created issue)