Allow reading password from file so that docker secrets can be used

2025-09-05 07:00:55 +00:00 · 2018-07-07 11:05:14 +02:00
parent 9597890b67
commit 1b8c502a60
2 changed files with 15 additions and 0 deletions
--- a/main.go
+++ b/main.go
@@ -26,6 +26,7 @@ type configData struct {
 	VerifyTLS             bool     `yaml:"verify_tls"`
 	Username              string   `yaml:"registry_username"`
 	Password              string   `yaml:"registry_password"`
+	PasswordFile          string   `yaml:"registry_password_file"`
 	EventListenerToken    string   `yaml:"event_listener_token"`
 	EventRetentionDays    int      `yaml:"event_retention_days"`
 	EventDatabaseDriver   string   `yaml:"event_database_driver"`
@@ -86,6 +87,17 @@ func main() {
 			a.config.BasePath = a.config.BasePath[0 : len(a.config.BasePath)-1]
 		}
 	}
+	// Read password from file.
+	if a.config.PasswordFile != "" {
+		if _, err := os.Stat(a.config.PasswordFile); os.IsNotExist(err) {
+			panic(err)
+		}
+		passwordBytes, err := ioutil.ReadFile(a.config.PasswordFile)
+		if err != nil {
+			panic(err)
+		}
+		a.config.Password = string(passwordBytes[:])
+	}

 	// Init registry API client.
 	a.client = registry.NewClient(a.config.RegistryURL, a.config.VerifyTLS, a.config.Username, a.config.Password)