Support docker secrets api as a property source [SPR-17428]

[spring-projects-issues]

Caleb Cushing opened SPR-17428 and commented

The secrets API from inside fo a container, which is what I'm talking about is simply

/run/secrets/keyname (value is the contents of the file)

it appears that having a keyname that contains dots is allowed, so spring could simply look at that directory and for files with the same key name as they would be in a properties file.

https://docs.docker.com/engine/swarm/secrets/
https://diogomonica.com/2017/03/27/why-you-shouldnt-use-env-variables-for-secret-data/

---

No further details from SPR-17428

[spring-projects-issues]

Stéphane Nicoll commented

I am not sure why this was reported here. If this is about looking at the environment to figure out that file exists and then "auto-create" a PropertySource for it, it doesn't belong as a low-level framework feature IMO.

[spring-projects-issues]

Caleb Cushing commented

I guess I see it as a file/directory property source, where each file contains one and only one property value, and the key is the name of the file. which I don't believe exists? maybe it does and I can't find it? this doesn't feel disimilar from ResourcePropertySource, except that's one file, this is many. I feel like this is more about having a class that can be pointed at a directory and use those files as a property source. Spring Boot then could use said class to autoconfigure.

[bclozel]

Might be related to spring-projects/spring-boot#19990

[bclozel]

Closing as this has been addressed in Spring Boot.