Pass secrets to containers as files instead of env variables Related-Prod: PROD-34268 Change-Id: I8269e2c3f0402980df13430de213764a7e2f8949

commit: df2c9df1f57e0bcee733bf2a2697ebee3c542481 [log] [tgz]
author: Oleksii Molchanov <omolchanov@mirantis.com> Tue Jul 28 23:34:03 2020 +0300
committer: Oleksii Molchanov <omolchanov@mirantis.com> Thu Aug 20 13:52:32 2020 +0300
tree: ff2ea1fc2d3f22f80d67121d974e9a4586bc76ef
parent: d12d9c8ecccdc3bd25cf93d3bd49da7811dc1bd6 [diff]
diff --git a/docker/swarm/stack/monitoring/alerta.yml b/docker/swarm/stack/monitoring/alerta.yml
index acd4d70..ac16a2b 100644
--- a/docker/swarm/stack/monitoring/alerta.yml
+++ b/docker/swarm/stack/monitoring/alerta.yml

@@ -8,6 +8,7 @@
     client:
       stack:
         monitoring:
+          version: '3.7'
           service:
             alerta:
               networks:
@@ -27,6 +28,13 @@
                 - ${prometheus:alerta:config_dir}/alertad.conf:/app/alertad.conf
               environment:
                 ADMIN_USERS: ${_param:alerta_admin_username}
-                ADMIN_PASSWORD: ${_param:alerta_admin_password}
+                ADMIN_PASSWORD_FILE: "/run/secrets/alerta"
                 MONGO_URI: ${_param:alerta_mongodb_uri}
                 PLUGINS: ""
+              secrets:
+                - alerta
+          secrets:
+            alerta:
+              external: true
+              value: ${_param:alerta_admin_password}
+
commit	df2c9df1f57e0bcee733bf2a2697ebee3c542481	[log] [tgz]
author	Oleksii Molchanov <omolchanov@mirantis.com>	Tue Jul 28 23:34:03 2020 +0300
committer	Oleksii Molchanov <omolchanov@mirantis.com>	Thu Aug 20 13:52:32 2020 +0300
tree	ff2ea1fc2d3f22f80d67121d974e9a4586bc76ef
parent	d12d9c8ecccdc3bd25cf93d3bd49da7811dc1bd6 [diff]