If you're talking about basic_auth in scrape jobs <https://prometheus.io/docs/prometheus/latest/configuration/configuration/#scrape_config>, then use password_file instead of password.
Otherwise, please clarify, or give an example of the embedded username+password config you're talking about. On Saturday, 17 December 2022 at 08:49:30 UTC natach...@gmail.com wrote: > Hey guys, > > I'm looking for some best practices advice for securing my prometheus > stack, because I don't wanna have username+password for my targets in my > prometheus.yml file > > I've looked for environment variables because this is one way that I know > of, and that turned out to be a huge discussion and a dead end. > > So what is you recommendation? What should I study/do ? > > Regards, > Nat > -- You received this message because you are subscribed to the Google Groups "Prometheus Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to prometheus-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/prometheus-users/fe336a1b-f5f3-42ad-9ac1-c7965a223953n%40googlegroups.com.
