Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hello, we are about to deploy hydra (and other ory services) for first production tests and want to set them up in a secure way. We wanted to use docker secrets for critical values but could not figure out how. Is there a (simple) way to use docker secrets with the standard docker images? appending _FILE to env variables does not seem to work? (e.g. DSN_FILE=/run/secrets/hydra_dsn). We would prefer to not have the whole config files in a secret (only credentials and other secrets)

For that you would need your own entrypoint script which expands these file variables to environmental variables with actual values.

ok, that's what I thought. just wanted to confirm that there wasn't another way that we missed. thanks.