Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Secrets for containerEnv #772

Open
g-kartik opened this issue Mar 12, 2024 · 2 comments
Open

Secrets for containerEnv #772

g-kartik opened this issue Mar 12, 2024 · 2 comments

Comments

@g-kartik
Copy link

g-kartik commented Mar 12, 2024
edited
Loading

Currently the --secrets-file sets the secret environment variables as remoteEnv which are only accessible by the vscode server process. A support for setting secrets as containerEnv shall ensure that all the running processes inside the devcontainer can access them.

At present, if I want to pass secrets at runtime I would have to pass them in containerEnv in devcontainer.json file, which is insecure as they are committed to the git repository. As a workaround, I make a docker compose file and pass the env_file there and use it for spinning up the devcontainer.
@samruddhikhandale
Copy link
Member

I wonder if it's very similar to the ask in https://github.com/orgs/devcontainers/discussions/119.

From https://github.com/orgs/devcontainers/discussions/119#discussioncomment-8761462

Not sure if a static env file would cover your case, but there is a feature request for supporting .env files: microsoft/vscode-remote-release#3007.

@g-kartik
Copy link
Author

Yes it is similar to microsoft/vscode-remote-release#3007

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@samruddhikhandale @g-kartik