Update superuser's password and API token after container redeployment. The superuser password and API token can be rotated regularly when secrets stored in secrets manager in cloud service provider. It will be convenient that SSO is in place but local superuser credential is kept as last resort.
...
Contrast to Current Behavior
Current behavior doesn't support superuser credential secrets rotation.
...
Discussion: Benefits and Drawbacks
Why do you think this project and the community will benefit from your
proposed change?
Add environment variable SUPERUSER_PASSWORD_OVERWRITE to allow SUPERUSER_PASSWORD and SUPERUSER_API_TOKEN to be updated in database as secrets rotation during container redeployment.
...
Double Check
[x] I have read the comments and followed the PR template.
[x] I have explained my PR according to the information in the comments.
Related Issue:
New Behavior
Update superuser's password and API token after container redeployment. The superuser password and API token can be rotated regularly when secrets stored in secrets manager in cloud service provider. It will be convenient that SSO is in place but local superuser credential is kept as last resort.
...
Contrast to Current Behavior
Current behavior doesn't support superuser credential secrets rotation. ...
Discussion: Benefits and Drawbacks
Security improvement
Yes
...
Changes to the Wiki
Add description about secret rotation to https://github.com/netbox-community/netbox-docker/wiki/Configuration#configure-for-production
...
Proposed Release Note Entry
Add environment variable SUPERUSER_PASSWORD_OVERWRITE to allow SUPERUSER_PASSWORD and SUPERUSER_API_TOKEN to be updated in database as secrets rotation during container redeployment.
...
Double Check
develop
branch.