Question
Setting up a Web App With Docker Containers - Security
- Posted on December 23, 2022
- ApplicationsContainerDockerInitial Server SetupLaravelSecurity
Asked by catbyte-io
I am currently looking at creating web apps with Laravel and Docker Compose as in the following tutorial:
My question is:
Isn’t it a very large security risk to store login credentials on a server? The tutorial instructs to store your MySQL (or other database) username and password in your ~/example/.env file. Is there any way around this that is more secure?
Thank you for your help, -catbyte
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Hollie's Hub for Good
Working on improving health and education, reducing inequality, and spurring economic growth? We’d like to help.
Get started for free
Enter your email to get $200 in credit for your first 60 days with DigitalOcean.
New accounts only. By submitting your email you agree to our Privacy Policy.
Hi there,
This is actually a standard practice and the recommended way for many frameworks, including Laravel. Here is the reference in their docs:
https://laravel.com/docs/9.x/configuration#environment-configuration
Though, you should never add your
.envfile to your Git project.Best,
Bobby