docker login best practice #108
Conversation
To script your log in. Especially useful when using a CI. Example: https://github.com/firepress-org/ghostfire/blob/master/.travis.yml#L81
|
@Kexkey it should be good this time! |
|
Hi @pascalandy ! Thanks for the suggestion. So I checked the link you provided and been thinking about all that. First, the line you modified is simply a comment. A reminder to the operator (who is me in the case of the user cyphernode) to log into the docker hub to be able to push the images to the cyphernode repo. If I use If I want to script it, by replacing this way of authenticating my user by the echo of the password from a shell variable, the password must be stored in clear somewhere to assign it to the variable. Isn't it more prone to password-leak? Of course, assigning the password to the variable command-line will put the info in the shell history. But I understand that if Travis (or any other tool) needs the password, of course I have to share it with "something" and using a pre-assigned variable may be the way to go. Let me know if I am missing something. Thanks again and don't hesitate to have a look at our docker stuff! We need this kind of inputs. |
|
You are all correct. I only submitted this PR as you shared during a meetup that you want to script the way we release and test this stack. I shared an example of how I use it via a DM on Twitter.
|
|
Right, indeed it’s something docker devs should be aware of. I completely missed your DMs, I just read them, very interesting! Thanks for sharing the best practices and hope to see you again at the next meetup! |
|
NICE! |
To script your log in. Especially useful when using a CI.
Example: https://github.com/firepress-org/ghostfire/blob/master/.travis.yml#L81