Update default secret mount path to /run/secrets/

This commit reverts the changes done in #738 to update the default secret mount path to `/run/secrets/` Signed-off-by: Vivek Singh <vivekkmr45@yahoo.in>
2025-06-10 09:16:48 +00:00 · 2018-07-02 00:37:58 +05:30 · 2018-07-02 00:37:58 +05:30 · e55c018c17
commit e55c018c17
parent 49cc6ae727
4 changed files with 4 additions and 4 deletions
--- a/docker-compose.armhf.yml
+++ b/docker-compose.armhf.yml
@ -16,7 +16,7 @@ services:
            direct_functions: "true"    # Functions are invoked directly over the overlay network
            direct_functions_suffix: ""
            basic_auth: "false"
-            secret_mount_path: "/var/openfaas/secrets/"
+            secret_mount_path: "/run/secrets/"
        deploy:
            resources:
                # limits:   # uncomment to enable limits
--- a/gateway/README.md
+++ b/gateway/README.md
@ -55,4 +55,4 @@ The gateway can be configured through the following environment variables:
 | `direct_functions`            | `true` or `false` -  functions are invoked directly over overlay network without passing through provider |
 | `direct_functions_suffix`     | Provide a DNS suffix for invoking functions directly over overlay network  |
 | `basic_auth`              | Set to `true` or `false` to enable embedded basic auth on the /system and /ui endpoints (recommended) |
-| `secret_mount_path`       | Set a location where you have mounted `basic-auth-user` and `basic-auth-password`, default: `/var/openfaas/secrets/`. |
+| `secret_mount_path`       | Set a location where you have mounted `basic-auth-user` and `basic-auth-password`, default: `/run/secrets/`. |
--- a/gateway/types/readconfig.go
+++ b/gateway/types/readconfig.go
@ -109,7 +109,7 @@ func (ReadConfig) Read(hasEnv HasEnv) GatewayConfig {

 	secretPath := hasEnv.Getenv("secret_mount_path")
 	if len(secretPath) == 0 {
-		secretPath = "/var/openfaas/secrets/"
+		secretPath = "/run/secrets/"
 	}
 	cfg.SecretMountPath = secretPath

--- a/gateway/types/readconfig_test.go
+++ b/gateway/types/readconfig_test.go
@ -210,7 +210,7 @@ func TestRead_BasicAuthDefaults(t *testing.T) {
 		t.Fail()
 	}

-	wantSecretsMount := "/var/openfaas/secrets/"
+	wantSecretsMount := "/run/secrets/"
 	if config.SecretMountPath != wantSecretsMount {
 		t.Logf("config.SecretMountPath, want: %s, got: %s\n", wantSecretsMount, config.SecretMountPath)
 		t.Fail()