nerodono opened a new issue, #5155: URL: https://github.com/apache/couchdb/issues/5155
[NOTE]: # ( ^^ Provide a general summary of the request in the title above. ^^ ) Some systems allow specifying file paths for sensitive fields instead of using cleartext, this allows using secret managements systems such as `agenix` or `sops-nix`. ## Summary [NOTE]: # ( Provide a brief overview of what the new feature is all about. ) It would be handy if couchdb had option like `-file-/secrets/password`. I know that couchdb also accepts hashed passwords in a config instead of cleartext ones, however, please see "additional context" why this option is also desirable. ## Desired Behaviour [NOTE]: # ( Tell us how the new feature should work. Be specific. ) [TIP]: # ( Do NOT give us access or passwords to your actual CouchDB! ) ``` [admins] admin = -file-/secrets/password ``` Couchdb looks into `/secrets/password`, sets password for `admin` from that file (either hashed or cleartext). ## Possible Solution [NOTE]: # ( Not required. Suggest how to implement the addition or change. ) ## Additional context [TIP]: # ( Why does this feature matter to you? What unique circumstances do you have? ) I use `sops-nix` as my secrets management solution, providing such option would make the workflow more consistent. I can implement this feature myself if you could guide me into the right place of code. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
