Closed aleprovencio closed 3 months ago
There are many gaps here. Currently inside the container the password is exposed in some ways. If password management is an issue I would suggest building the containers with an altered entrypoint.sh and a fully populated odoo.conf
Good question btw
@aleprovencio in an effort to clean up the issue queue can you close this if you have what you need?
Sure, and thanks for considering this @lathama
Following this last
docker-compose
example on the official README, it uses a docker secret that has passwords for thepostgres
andodoo
user.Although I have not tested using the secret in a swarm context using
docker secret
commands, I realized that this will have permission issues for secret file created with restrictive permissions (i.e,root
owned, 600) probably because this image runs asodoo
user instead ofroot
.I've also seen this issue still not closed although there was already this merge.
Anyways, are there any additional thoughts about this?