Addshore added a comment. |
In T192365#4145533, @Tarrow wrote:I think the hardcoded 'not-a-secret's would simply be ENV variables passed from the docker-compose.yml down to each container at runtime.
It would then be up to the user to enter a random string here instead so that it is secure. In any case:
That would be consistent with https://github.com/wmde/wikibase-docker/blob/master/docker-compose.yml#L35 (the mysql creds)
TASK DETAIL
EMAIL PREFERENCES
To: Tarrow, Addshore
Cc: Lydia_Pintscher, Aklapper, Tarrow, Addshore, Magnus, Lucas_Werkmeister_WMDE, Lahi, Gq86, GoranSMilovanovic, lisong, QZanden, LawExplorer, Abbe98, Wikidata-bugs, aude, Mbch331
Cc: Lydia_Pintscher, Aklapper, Tarrow, Addshore, Magnus, Lucas_Werkmeister_WMDE, Lahi, Gq86, GoranSMilovanovic, lisong, QZanden, LawExplorer, Abbe98, Wikidata-bugs, aude, Mbch331
_______________________________________________ Wikidata-bugs mailing list Wikidata-bugs@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikidata-bugs