Konrad Windszus created FELIX-6748:
--------------------------------------
Summary: configadmin-interpolation: Support secrets sourced from
environment variables
Key: FELIX-6748
URL: https://issues.apache.org/jira/browse/FELIX-6748
Project: Felix
Issue Type: Improvement
Components: Configuration Admin
Affects Versions: configadmin-interpolation-plugin-1.2.8
Reporter: Konrad Windszus
Currently the secret placeholder is always resolved via file base lookup
(https://github.com/apache/felix-dev/tree/master/configadmin-plugins/interpolation#secrets-lookup).
While this is the default for container based applications, locally
development often happens against non-containerized servers. Having the secrets
exposed in the filesystem is actually less secure than having them in
short-lived environment variables. Therefore it would be beneficial to support
environment variables via a magic string given to
{{org.apache.felix.configadmin.plugin.interpolation.secretsdir}}. That way the
same OSGi configurations (leveraging secrets) can be used in easily in both
containerized and native servers in a more secure fashion.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
