Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to specify Scanner password via Secret #118

Closed
agilgur5 opened this issue Aug 6, 2020 · 0 comments · Fixed by #270
Closed

Unable to specify Scanner password via Secret #118

agilgur5 opened this issue Aug 6, 2020 · 0 comments · Fixed by #270
Assignees
@KoppulaRajender
Labels
enhancement

Comments

@agilgur5
Copy link
Contributor

agilgur5 commented Aug 6, 2020
edited
Loading

There is no option available to specify a Secret for the Scanner password, meaning it has to be input in plaintext in a Helm values file or passed via command-line. But not all Helm deployment styles allow for command-line specification, requiring customization to do so. This is also a security issue as, in either case, the plaintext password is introspectable.

It would be much easier if the Scanner password could be specified as a Secret, similar to the Server's admin password or the Enforcer's enforcerToken

This seems like it may be difficult to provide here and may require upstream changes to the Scanner, because it seems to only accept password as command-line argument in the Chart's containers spec as well as per the Scanner executable docs. This may require it to accept an environment variable or volume mount as an alternative to the command-line argument.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@KoppulaRajender KoppulaRajender

Labels
enhancement
Projects
None yet
Milestone
No milestone
2 participants
@agilgur5 @KoppulaRajender