I'm looking for a way to use docker secrets and for all case where I don't need to update the stored value of the secret that would be a perfect situation but my app is having multiple services which are having 3 legged OAuth authorization. After successfully obtaining all tokens a script is collecting all tokens then creating secrets out of them and executing the config of my docker.compose.yml file with the container using those secrets. The problem is when the tokens have to be refreshed and stored again as secrets. Docker secrets does not allow updating the secrets. What would be the possible workaround or better approach?
docker secrets and refresh tokens
556 Views Asked by Boncho Belutov At
1
There are 1 best solutions below
Related Questions in DOCKER
- Docker, redirecting to virtualbox port
- Collect only from STDERR when using Docker syslog logging driver
- How can I create a docker image from the current system?
- Moving Docker Containers Around
- How can I test with serverspec that Jenkins is running in a jenkins docker container?
- How to deploy django 1.8 on Elastic Beanstalk using Docker
- Emulating `docker run` using the golang docker API
- Where are docker images and containers stored when we use it with Windows?
- docker compose, vagrant and insecure Repository
- Commit data in a mysql container
- oh-my-zsh installation returns non zero code
- Use custom docker binary in CoreOS
- Can I use docker image ubuntu 14.04 if my host is 12.04?
- Hide/obfuscate environmental parameters in docker
- How to add initial users when starting a RabbitMQ Docker container?
Related Questions in TOKEN
- .net Web Api 2 Owin authentication token expires suddenly and often on IIS 8.5
- search with filter by token count
- How to token paste a number?
- Ember.js REST Auth Headers
- django rest framework - token authentication logout
- Is my JWT refresh plan secure?
- PHP token security
- GCM get invalid tokens when sending to multiple devices at once
- Uncaught SyntaxError: Unexpected token < in HTML - can't solve
- TERADATA - How to split a character column and keep the last token?
- Oauth refresh token provider error in ValidateClientAuthentication
- First authentification in order to get token
- does Token Based Authentication requires to store token in DB?
- Play Framework: How to Add a Header to Every Response
- Meteor app deploying with Modulus
Related Questions in DOCKER-SECRETS
- Docker: replace file contents with secret in docker-compose
- Can't connect to mongodb for Unifi Network Application in Docker
- How to Securely Manage API Database Passwords Using Secrets in a Docker Swarm Stack?
- Creating a docker swarm service with secret using docker api
- How/Where to save credentials to use from Dockerfile
- encrypt .env variables to be used in docker-compose
- How to prevent docker exec from viewing environment variables
- Docker swarm inconsistency
- Safe ways to specify postgres parameters for healthchecks in docker compose
- Cannot access to secrets .net core with Docker
- MYSQL_ROOT_PASSWORD_FILE is reading '/run/secrets/mypassword' as the password not the path
- docker-compose secrets not being bonded/read by environment variable
- How to use secrets as interpolation variables in Docker-Compose?
- mount secrets for jupyterhub on kubernetes with Helm
- Is not using --no-cache safe when building Docker image using BuildKit to pass secret
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
You do not update a secret or config in place. They are immutable. Instead, include a version number in your secret name. When you need to change the secret, create a new one with a new name, and then update your service with the new secret version. This will trigger a rolling update of your service.