<div dir="ltr"><div>Hi all,</div><div>I'm looking for a way to avoid all plain text password into configuration files.</div><div>maybe store sensibles data into secret file and read variables into opensips configuration file ?</div><div><br></div><div>Ex:</div><div><u>secret file:</u></div><div><pre class="gmail-programlisting">MYSQL_USER: opensips<br>MYSQL_PWD: 4845123121<br>...<br></pre></div><div><br></div><div><u>Configuration file:</u><br></div><div>from:</div><div><pre class="gmail-programlisting">modparam("drouting", "db_url",
        "mysql://<a href="http://opensips:4845123121@1.1.1.1/opensips">opensips:4845123121@1.1.1.1/opensips</a>")<br><br></pre><pre class="gmail-programlisting"><span style="font-family:arial,helvetica,sans-serif">To:</span><br>modparam("drouting", "db_url",
        "mysql://$MYSQL_USER:$MYSQL_PWD@$MYSQL_HOST/opensips")<br><br><br></pre></div><div>Or</div><div>use Ansible with jinja template ? <br></div><div><pre class="gmail-programlisting">modparam("drouting", "db_url",
        "mysql://{{ MYSQL_USER }}:{{ MYSQL_PWD }}@{{ MYSQL_HOST }}/opensips")<br><span style="font-family:arial,helvetica,sans-serif"><br></span></pre><pre class="gmail-programlisting"><span style="font-family:arial,helvetica,sans-serif">The goal is push all configuration on our gitlab (without the "secret file")<br><br></span></pre><pre class="gmail-programlisting"><span style="font-family:arial,helvetica,sans-serif">Do you have another way ?<br></span></pre><pre class="gmail-programlisting"><span style="font-family:arial,helvetica,sans-serif">thanks in advance<br><br></span></pre><pre class="gmail-programlisting"><span style="font-family:arial,helvetica,sans-serif">PS: happy new year everyone !</span><br></pre></div></div>