New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a placeholder for POSTGRES_PASSWORD #13929
Conversation
It's a required environment variable, the postgresql container crashes without it.
Note that it's because of a breaking change in the postgres docker image: docker-library/postgres#658 We could revert to the old behavior, but this may not be advisable, especially if we end up merging #13941 (but docker-compose setups seem to not work without that…) |
We should encourage people to use credentials for their databases. |
I mean, kinda, but people who did install using docker-compose in the past most probably have a password-less postgres anyway. We don't set a password either for Redis. And in the case of docker-compose this isn't an issue, thanks to the services being on their own network. Requiring people to set a password for postgres is an extra step that, in this particular configuration, does not provide any extra security. |
I am afraid to tell you that in the default docker daemon configuration this is an issue cause icc (inter container communication) is enabled which allows everything to talk to everything cause networks and port publishs are ignored. |
Ah, indeed. wtf |
Bootstrap the container before your boot the compose services.
|
I mean, the current PR seems fine, with corresponding documentation to change that password. |
hey, if you're going to hardcode the password. Can you add the username and db values as well?
|
Why? The setup tasks etc. default to EDIT: |
If you wanted to keep the current defaults from https://github.com/tootsuite/mastodon/blob/9b7e3b4774d47c184aa759364d41f40e0cdfa210/lib/tasks/mastodon.rake#L43-64
then you could remove those conditions on using_docker edit: infact, I'd like to request that change. |
This uses |
I vote you don't merge this.
|
yeah properly documenting it seems like a good plan, it'd just have been good if less documentation and user steps were needed |
@ThibG almost completed draft mastodon/documentation#778 |
@progval please close this. I'll keep the docker documentation updated soon |
It's a required environment variable, the postgresql container
crashes without it.