[PR #1132] [MERGED] feat: Support loading passwords from docker secrets #1198

New Issue

Closed

opened 2026-02-04 21:56:29 +03:00 by OVERLORD · 0 comments

OVERLORD commented 2026-02-04 21:56:29 +03:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/plankanban/planka/pull/1132
Author: @iosabi
Created: 5/15/2025
Status: ✅ Merged
Merged: 5/15/2025
Merged by: @meltyshev

Base: master ← Head: docker_secrets

---

📝 Commits (2)

• 63c073e feat: Support loading passwords from docker secrets
• b8c62d2 chore: Prettify env variables, add more secrets

📊 Changes

4 files changed (+96 additions, -16 deletions)

View changed files

📝 docker-compose-dev.yml (+10 -5)
📝 docker-compose.yml (+28 -5)
📝 server/.env.sample (+10 -5)
📝 server/start.sh (+48 -1)

📄 Description

Docker secrets are exposed as files in /run/secrets/ inside the container instead of as environment variables. To support deployments where the passwords are stored in secrets, this patch adds support for loading the SMTP_PASSWORD, SECRET_KEY and the database password from files, using the __FILE suffix convention found in many docker images.

The database password is part of the DATABASE_URL environment variable, if a password is used at all. To support injecting the password into the DATABASE_URL without having to use the whole URL as the secret, the start.sh replaces the string ${DATABASE_PASSWORD} in the DATABASE_URL environment variable by the contents of the DATABASE_PASSWORD variable, which can now also be loaded from the corresponding file passed in DATABASE_PASSWORD__FILE.

These changes are backwards compatible since they only load the __FILE suffix version if the original variable was not set the __FILE one is set.

Added comments in docker-compose.yml with examples for discoverability of the feature. Tested this on top of 2.0.0-rc.2.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/plankanban/planka/pull/1132 **Author:** [@iosabi](https://github.com/iosabi) **Created:** 5/15/2025 **Status:** ✅ Merged **Merged:** 5/15/2025 **Merged by:** [@meltyshev](https://github.com/meltyshev) **Base:** `master` ← **Head:** `docker_secrets` --- ### 📝 Commits (2) - [`63c073e`](https://github.com/plankanban/planka/commit/63c073e31e2c89d239a152ef6dc18894adbfd4f5) feat: Support loading passwords from docker secrets - [`b8c62d2`](https://github.com/plankanban/planka/commit/b8c62d2dcca302d35cd57acc675652e6cd1390da) chore: Prettify env variables, add more secrets ### 📊 Changes **4 files changed** (+96 additions, -16 deletions) <details> <summary>View changed files</summary> 📝 `docker-compose-dev.yml` (+10 -5) 📝 `docker-compose.yml` (+28 -5) 📝 `server/.env.sample` (+10 -5) 📝 `server/start.sh` (+48 -1) </details> ### 📄 Description Docker secrets are exposed as files in `/run/secrets/` inside the container instead of as environment variables. To support deployments where the passwords are stored in secrets, this patch adds support for loading the `SMTP_PASSWORD`, `SECRET_KEY` and the database password from files, using the `__FILE` suffix convention found in many docker images. The database password is part of the `DATABASE_URL` environment variable, if a password is used at all. To support injecting the password into the DATABASE_URL without having to use the whole URL as the secret, the `start.sh` replaces the string `${DATABASE_PASSWORD}` in the `DATABASE_URL` environment variable by the contents of the `DATABASE_PASSWORD` variable, which can now also be loaded from the corresponding file passed in `DATABASE_PASSWORD__FILE`. These changes are backwards compatible since they only load the `__FILE` suffix version if the original variable was not set the `__FILE` one is set. Added comments in docker-compose.yml with examples for discoverability of the feature. Tested this on top of 2.0.0-rc.2. --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

OVERLORD added the pull-request label 2026-02-04 21:56:29 +03:00

OVERLORD closed this issue 2026-02-04 21:56:35 +03:00

OVERLORD referenced this issue 2026-02-04 21:58:29 +03:00

[PR #1198] [CLOSED] Feature/dutch localization #1229

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

gh-pages

dependabot/npm_and_yarn/multi-795903f3f3

dependabot/npm_and_yarn/server/multi-60f2582fdd

dependabot/npm_and_yarn/client/qs-6.14.2

dependabot/npm_and_yarn/client/markdown-it-14.1.1

v2.0.2

planka-2.0.2

v2.0.1

planka-2.0.1

v2.0.0

planka-2.0.0

planka-1.1.2

planka-1.1.1

planka-1.1.0

planka-1.0.5

planka-1.0.4

v2.0.0-rc.4

v1.26.3

planka-0.2.26

planka-1.0.3

planka-1.0.2

v2.0.0-rc.3

planka-1.0.1

planka-1.0.0

v2.0.0-rc.2

planka-0.2.25

v1.26.2

v1.26.1

planka-0.2.24

v1.26.0

planka-0.2.23

v1.25.1

planka-0.2.22

v1.25.0

planka-0.2.21

v1.24.4

planka-0.2.20

v1.24.3

planka-0.2.19

planka-0.2.18

v1.24.2

planka-0.2.17

planka-0.2.16

v1.24.1

planka-0.2.15

v1.24.0

planka-0.2.14

v1.23.5

v1.23.4

planka-0.2.13

planka-0.2.12

v1.23.3

planka-0.2.11

v1.23.2

planka-0.2.10

v1.23.1

planka-0.2.9

v1.23.0

v1.22.0

planka-0.2.8

Labels

Clear labels

bug

bug

documentation

documentation

duplicate

enhancement

good first issue

help wanted

pull-request

Mirrored from GitHub Pull Request

question

wontfix

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/planka#1198