[GH-ISSUE #492] Use the _FILE suffix for configuring variables with docker secrets #459

New issue

Closed

opened 2026-03-02 08:19:06 +03:00 by kerem · 1 comment

kerem commented 2026-03-02 08:19:06 +03:00

Owner

Copy link

Originally created by @cha0s on GitHub (Feb 10, 2026).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/492

Checklist

• I searched existing Issues, and did not find a similar enhancement request
• This enhancement request is about the IPsec VPN server Docker image, and not IPsec VPN itself
• I read the README
• I read the Important notes
• I followed instructions to configure VPN clients
• I checked IKEv1 troubleshooting, IKEv2 troubleshooting, enabled logs and checked VPN status

Describe the enhancement request
The environment variables (VPN_IPSEC_PSK, VPN_USER, VPN_PASSWORD) should be configurable using docker secrets by setting the variables with a _FILE suffix (e.g. VPN_PASSWORD_FILE).

See the following image captured from the mysql docker container README:

Is your enhancement request related to a problem? Please describe.
The problem is that currently sensitive configuration files must be stored in plaintext.

Originally created by @cha0s on GitHub (Feb 10, 2026). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/492 **Checklist** - [x] I searched existing [Issues](https://github.com/hwdsl2/docker-ipsec-vpn-server/issues?q=is%3Aissue), and did not find a similar enhancement request - [x] This enhancement request is about the IPsec VPN server Docker image, and not IPsec VPN itself - [x] I read the [README](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md) - [x] I read the [Important notes](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#important-notes) - [x] I followed instructions to [configure VPN clients](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/README.md#next-steps) - [x] I checked [IKEv1 troubleshooting](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#ikev1-troubleshooting), [IKEv2 troubleshooting](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/ikev2-howto.md#ikev2-troubleshooting), [enabled logs](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/docs/advanced-usage.md#enable-libreswan-logs) and checked [VPN status](https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#check-logs-and-vpn-status) **Describe the enhancement request** The environment variables (`VPN_IPSEC_PSK`, `VPN_USER`, `VPN_PASSWORD`) should be configurable using docker secrets by setting the variables with a `_FILE` suffix (e.g. `VPN_PASSWORD_FILE`). See the following image captured from the mysql docker container README: <img width="1193" height="242" alt="Image" src="https://github.com/user-attachments/assets/39faf5bb-a151-4932-a59b-31e3ec56e0f6" /> **Is your enhancement request related to a problem? Please describe.** The problem is that currently sensitive configuration files must be stored in plaintext.

kerem closed this issue 2026-03-02 08:19:06 +03:00

kerem commented 2026-03-02 08:19:07 +03:00

Author

Owner

Copy link

@hwdsl2 commented on GitHub (Feb 10, 2026):

@cha0s Hello! Thank you for your suggestions. Currently, Docker secrets are only available to swarm services, not to standalone containers. This project currently has the option for users to load the VPN variables from a Docker "env" file. You are welcome to customize the image to your needs.

<!-- gh-comment-id:3878256889 --> @hwdsl2 commented on GitHub (Feb 10, 2026): @cha0s Hello! Thank you for your suggestions. Currently, [Docker secrets](https://docs.docker.com/engine/swarm/secrets/) are only available to swarm services, not to standalone containers. This project currently has the option for users to load the VPN variables from a Docker "env" file. You are welcome to [customize the image](https://github.com/hwdsl2/docker-ipsec-vpn-server/blob/master/docs/advanced-usage.md#build-from-source-code) to your needs.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

No results found.

Labels

Clear labels   

bug

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question

No labels

bug

pull-request

question

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/docker-ipsec-vpn-server#459

No description provided.