In this talk, we’ll go over how to leverage Docker secrets and DI (dependency injection) to keep your API keys and other credentials out of your repos and easily exposed environment variables. Examples are in the Yii framework, but the concepts can be used with anything. We’ll go over how to establish and use secrets and how to update them, as well as how to reference them from within an application or package. General knowledge of Docker basics is a plus, but you should be able to follow along even if you’re a Docker novice.

Comments

Comments are closed.

Learned a ton of new really useful stuff about Docker / Swarm I didn't know. Security issues are one of the things PHP apps get dinged on by virtue of how they're designed. I love that this talk is putting forth a great set of bets practices for keeping our app secrets secure and users safe. Dana did an awesome job. Engaging and super knowledgeable.

Koldo Picaza at 12:38 on 16 Oct 2021

A lot of things to start applying "yesterday". Have to refresh all my docker-composes XDDD Thanks for the great talk