a72001dea5
By having the environment explicit on each service, we both document the settings and have more control over what each service is allowed to see. This avoids weird things like nginx having access to postgresql's credentials on its environment. As a bonus: we are able to use one single environment file, which is basically dd.conf with some values that are dynamically-calculated and added from dd-ctl. |
||
---|---|---|
.. | ||
admin.devel.yml | ||
admin.yml | ||
adminer.yml | ||
api.devel.yml | ||
api.yml | ||
avatars.yml | ||
haproxy.no-ports.yml | ||
haproxy.proxy.yml | ||
haproxy.yml | ||
keycloak.yml | ||
network.yml | ||
pgtuner.yml | ||
waf-modsecurity.disabled.yml | ||
waf-modsecurity.yml |