Re: [Catalyst] Where best to store database connection information?

2015-02-23 Thread Adam Witney

Thanks guys for all the helpful ideas!


From: abhishek jain [mailto:abhishek.netj...@gmail.com]
Sent: 18. februára 2015 6:27
To: 'The elegant MVC web framework'
Subject: Re: [Catalyst] Where best to store database connection information?

Hi,

>>But this seems a bit of a security
>>problem having the main password in a text file like this,
>>especially if it goes into git.


What i do is i will modify the password on production manually and successive 
update / pull will not modify the password,  and i will also not commit the 
change in git / svn. Barring this config change it is a bad habbit to modify 
anything on production, Let me know if someone disagrees.

Also  in case you need a solution where the config file is password protected 
not a part of main repository then you will need external svn repo i guess (in 
case of svn ) , might be a better svn / repo config question.
Thanks
Abhishek


___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-17 Thread abhishek jain
Hi,

 

>>But this seems a bit of a security
>>problem having the main password in a text file like this,
>>especially if it goes into git.

 

 

What i do is i will modify the password on production manually and successive 
update / pull will not modify the password,  and i will also not commit the 
change in git / svn. Barring this config change it is a bad habbit to modify 
anything on production, Let me know if someone disagrees.

 

Also  in case you need a solution where the config file is password protected 
not a part of main repository then you will need external svn repo i guess (in 
case of svn ) , might be a better svn / repo config question. 

Thanks

Abhishek 

 

 

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-17 Thread Shantanu Bhadoria
I generally store my config files in /etc/app_name/config.yml and then I
use MooseX::Singleton to store and YAML::XS to load the config data from
the yml into the app in app_name.pm
HTH,
-Shantanu Bhadoria

On Tue, Feb 17, 2015 at 11:09 PM, Hartmaier Alexander <
alexander.hartma...@t-systems.at> wrote:

> Note that Catalyst itself doesn't use any config loading,
> Catalyst::Plugin::ConfigLoader does.
> This then uses different config file format modules depending on the
> file extension.
>
>
>
> On 2015-02-16 18:10, Octavian Rasnita wrote:
>
>> Catalyst uses Config::General to read .conf files. If Config::General
>> is configured with the option -UseApacheInclude,
>> then you can use an apache "include file.conf" in the .conf file to
>> include another file from another directory which is not saved by git.
>>
>> Or the option -IncludeDirectories can be also useful so all the files
>> from the given directory will be included.
>>
>> --Octavian
>>
>> - Original Message - From: "David Schmidt" 
>> To: "The elegant MVC web framework" 
>> Sent: Monday, February 16, 2015 6:22 PM
>> Subject: Re: [Catalyst] Where best to store database connection
>> information?
>>
>>
>>  the catalyst configloader can load more then just one file.
>>>
>>> by default it loads "myapp.conf"
>>>
>>> if a file named "myapp_local.conf" exists it is loaded aswell.
>>>
>>> docs:
>>> https://metacpan.org/pod/distribution/Catalyst-Plugin-
>>> ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-
>>> configuration-file
>>>
>>> On 16 February 2015 at 15:42, Adam Witney  wrote:
>>>
>>>> Hi,
>>>>
>>>> I have a Catalyst / DBIx::Class application and I have been storing
>>>> the database connection parameters in a config file which is sourced
>>>> using MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security
>>>> problem having the main password in a text file like this,
>>>> especially if it goes into git.
>>>>
>>>> Is there a recommended or best practice place to store database
>>>> connection information?
>>>>
>>>> Thanks for any help
>>>>
>>>> Adam
>>>>
>>>> ___
>>>> List: Catalyst@lists.scsys.co.uk
>>>> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
>>>> Searchable archive:
>>>> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
>>>> Dev site: http://dev.catalyst.perl.org/
>>>>
>>>
>>> ___
>>> List: Catalyst@lists.scsys.co.uk
>>> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
>>> Searchable archive:
>>> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
>>> Dev site: http://dev.catalyst.perl.org/
>>>
>>
>>
>> ___
>> List: Catalyst@lists.scsys.co.uk
>> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
>> Searchable archive:
>> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
>> Dev site: http://dev.catalyst.perl.org/
>>
>
>
>
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"
> *"*"*"*"*"*"*"*"*
> T-Systems Austria GesmbH Rennweg 97-99, 1030 Wien
> Handelsgericht Wien, FN 79340b
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"
> *"*"*"*"*"*"*"*"*
> Notice: This e-mail contains information that is confidential and may be
> privileged.
> If you are not the intended recipient, please notify the sender and then
> delete this e-mail immediately.
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"
> *"*"*"*"*"*"*"*"*
>
>
> ___
> List: Catalyst@lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive: http://www.mail-archive.com/
> catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/
>
___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-17 Thread Hartmaier Alexander

Note that Catalyst itself doesn't use any config loading,
Catalyst::Plugin::ConfigLoader does.
This then uses different config file format modules depending on the
file extension.


On 2015-02-16 18:10, Octavian Rasnita wrote:

Catalyst uses Config::General to read .conf files. If Config::General
is configured with the option -UseApacheInclude,
then you can use an apache "include file.conf" in the .conf file to
include another file from another directory which is not saved by git.

Or the option -IncludeDirectories can be also useful so all the files
from the given directory will be included.

--Octavian

- Original Message - From: "David Schmidt" 
To: "The elegant MVC web framework" 
Sent: Monday, February 16, 2015 6:22 PM
Subject: Re: [Catalyst] Where best to store database connection
information?



the catalyst configloader can load more then just one file.

by default it loads "myapp.conf"

if a file named "myapp_local.conf" exists it is loaded aswell.

docs:
https://metacpan.org/pod/distribution/Catalyst-Plugin-ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-configuration-file

On 16 February 2015 at 15:42, Adam Witney  wrote:

Hi,

I have a Catalyst / DBIx::Class application and I have been storing
the database connection parameters in a config file which is sourced
using MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security
problem having the main password in a text file like this,
especially if it goes into git.

Is there a recommended or best practice place to store database
connection information?

Thanks for any help

Adam

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive:
http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive:
http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/



___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive:
http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/




*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
T-Systems Austria GesmbH Rennweg 97-99, 1030 Wien
Handelsgericht Wien, FN 79340b
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
Notice: This e-mail contains information that is confidential and may be 
privileged.
If you are not the intended recipient, please notify the sender and then
delete this e-mail immediately.
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread John Napiorkowski
People do different things based on there setup.  I tend to use ENV vars and 
store them on the local server under /etc with a restricted account.  There's 
no official way to do this (we are not Rails :)). -jnap 

 On Monday, February 16, 2015 8:42 AM, Adam Witney  
wrote:
   

 Hi,

I have a Catalyst / DBIx::Class application and I have been storing the 
database connection parameters in a config file which is sourced using 
MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security problem having 
the main password in a text file like this, especially if it goes into git.

Is there a recommended or best practice place to store database connection 
information?

Thanks for any help

Adam

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


   ___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread Octavian Rasnita
If the application is owned by another user than root (as recommended) and 
it is kept in a directory with limited permissions, then other users won't 
have access to it.
The root will have access, but it would have access to anything on that 
server...


--Octavian

- Original Message - 
From: "Adam Witney" 

To: "The elegant MVC web framework" 
Sent: Monday, February 16, 2015 7:24 PM
Subject: Re: [Catalyst] Where best to store database connection information?



Hi,

Thanks for your replies.

I guess my question was more about any security issue of having the database 
username/password stored in a text file.  And what do people consider best 
practice for this from a security point of view?


Thanks

Adam



-Original Message-
From: Octavian Rasnita [mailto:orasn...@gmail.com]
Sent: 16. februára 2015 17:10
To: The elegant MVC web framework
Subject: Re: [Catalyst] Where best to store database connection
information?

Catalyst uses Config::General to read .conf files. If Config::General is
configured with the option -UseApacheInclude, then you can use an apache
"include file.conf" in the .conf file to include another file from another
directory which is not saved by git.

Or the option -IncludeDirectories can be also useful so all the files from 
the

given directory will be included.

--Octavian

- Original Message -
From: "David Schmidt" 
To: "The elegant MVC web framework" 
Sent: Monday, February 16, 2015 6:22 PM
Subject: Re: [Catalyst] Where best to store database connection
information?


> the catalyst configloader can load more then just one file.
>
> by default it loads "myapp.conf"
>
> if a file named "myapp_local.conf" exists it is loaded aswell.
>
> docs:
> https://metacpan.org/pod/distribution/Catalyst-Plugin-
ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-
configuration-file
>
> On 16 February 2015 at 15:42, Adam Witney  wrote:
>> Hi,
>>
>> I have a Catalyst / DBIx::Class application and I have been storing the
>> database connection parameters in a config file which is sourced using
>> MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security
problem
>> having the main password in a text file like this, especially if it 
>> goes

>> into git.
>>
>> Is there a recommended or best practice place to store database
>> connection information?
>>
>> Thanks for any help
>>
>> Adam
>>
>> ___
>> List: Catalyst@lists.scsys.co.uk
>> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
>> Searchable archive:
>> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
>> Dev site: http://dev.catalyst.perl.org/
>
> ___
> List: Catalyst@lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive:
> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/


___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: 
http://www.mail-archive.com/catalyst@lists.scsys.co.uk/

Dev site: http://dev.catalyst.perl.org/


___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/ 



___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread Nigel Metheringham


Adam Witney wrote:

I guess my question was more about any security issue of having the database 
username/password stored in a text file.  And what do people consider best 
practice for this from a security point of view?


One mechanism that may help is to move the DB connection data out -
a way to do this is https://metacpan.org/pod/DBIx::Class::Schema::Config

Which moves the problem around...

I tend to have dev info with configs referring to sqlite - no passwords.
Deployed versions have configs built up from templates in ansible,
credentials either gitcrypt-ed or ansible vaulted.

Nigel.

--
[ Nigel Metheringham -- ni...@dotdot.it ]
[ Ellipsis Intangible Technologies  ]

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread Craig Chant
I have mine in an adaptor class singleton.

Just be aware using this approach means if there is an error and you have debug 
/ trace switched on it outputs the username and password in the debug output!

So always ensure you never leave these flags on when you publish the live 
version.

-Original Message-
From: Adam Witney [mailto:awit...@sgul.ac.uk]
Sent: 16 February 2015 17:25
To: The elegant MVC web framework
Subject: Re: [Catalyst] Where best to store database connection information?


Hi,

Thanks for your replies.

I guess my question was more about any security issue of having the database 
username/password stored in a text file.  And what do people consider best 
practice for this from a security point of view?

Thanks

Adam


> -Original Message-
> From: Octavian Rasnita [mailto:orasn...@gmail.com]
> Sent: 16. februára 2015 17:10
> To: The elegant MVC web framework
> Subject: Re: [Catalyst] Where best to store database connection
> information?
>
> Catalyst uses Config::General to read .conf files. If Config::General
> is configured with the option -UseApacheInclude, then you can use an
> apache "include file.conf" in the .conf file to include another file
> from another directory which is not saved by git.
>
> Or the option -IncludeDirectories can be also useful so all the files
> from the given directory will be included.
>
> --Octavian
>
> - Original Message -
> From: "David Schmidt" 
> To: "The elegant MVC web framework" 
> Sent: Monday, February 16, 2015 6:22 PM
> Subject: Re: [Catalyst] Where best to store database connection
> information?
>
>
> > the catalyst configloader can load more then just one file.
> >
> > by default it loads "myapp.conf"
> >
> > if a file named "myapp_local.conf" exists it is loaded aswell.
> >
> > docs:
> > https://metacpan.org/pod/distribution/Catalyst-Plugin-
> ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local
> -
> configuration-file
> >
> > On 16 February 2015 at 15:42, Adam Witney  wrote:
> >> Hi,
> >>
> >> I have a Catalyst / DBIx::Class application and I have been storing
> >> the database connection parameters in a config file which is
> >> sourced using MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a
> >> security
> problem
> >> having the main password in a text file like this, especially if it
> >> goes into git.
> >>
> >> Is there a recommended or best practice place to store database
> >> connection information?
> >>
> >> Thanks for any help
> >>
> >> Adam
> >>
> >> ___
> >> List: Catalyst@lists.scsys.co.uk
> >> Listinfo:
> >> http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> >> Searchable archive:
> >> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> >> Dev site: http://dev.catalyst.perl.org/
> >
> > ___
> > List: Catalyst@lists.scsys.co.uk
> > Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> > Searchable archive:
> > http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> > Dev site: http://dev.catalyst.perl.org/
>
>
> ___
> List: Catalyst@lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive:
> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/
This Email and any attachments contain confidential information and is intended 
solely for the individual to whom it is addressed. If this Email has been 
misdirected, please notify the author as soon as possible. If you are not the 
intended recipient you must not disclose, distribute, copy, print or rely on 
any of the information contained, and all copies must be deleted immediately. 
Whilst we take reasonable steps to try to identify any software viruses, any 
attachments to this e-mail may nevertheless contain viruses, which our 
anti-virus software has failed to identify. You should therefore carry out your 
own anti-virus checks before opening any documents. HomeLoan Partnership will 
not accept any liability for damage caused by computer viruses emanating from 
any attachment or other document supplied with this e-mail. HomeLoan 
Partnership reserves 

Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread Hugh Barnard
Hi Adam

The specific difficulty you mentioned can be solved by
https://help.github.com/articles/ignoring-files/ this is pretty a necessity
for github otherwise, sooner or later, one forgets.

Best regards Hugh

On 16 February 2015 at 17:24, Adam Witney  wrote:

>
> Hi,
>
> Thanks for your replies.
>
> I guess my question was more about any security issue of having the
> database username/password stored in a text file.  And what do people
> consider best practice for this from a security point of view?
>
> Thanks
>
> Adam
>
>
> > -Original Message-
> > From: Octavian Rasnita [mailto:orasn...@gmail.com]
> > Sent: 16. februára 2015 17:10
> > To: The elegant MVC web framework
> > Subject: Re: [Catalyst] Where best to store database connection
> > information?
> >
> > Catalyst uses Config::General to read .conf files. If Config::General is
> > configured with the option -UseApacheInclude, then you can use an apache
> > "include file.conf" in the .conf file to include another file from
> another
> > directory which is not saved by git.
> >
> > Or the option -IncludeDirectories can be also useful so all the files
> from the
> > given directory will be included.
> >
> > --Octavian
> >
> > ----- Original Message -
> > From: "David Schmidt" 
> > To: "The elegant MVC web framework" 
> > Sent: Monday, February 16, 2015 6:22 PM
> > Subject: Re: [Catalyst] Where best to store database connection
> > information?
> >
> >
> > > the catalyst configloader can load more then just one file.
> > >
> > > by default it loads "myapp.conf"
> > >
> > > if a file named "myapp_local.conf" exists it is loaded aswell.
> > >
> > > docs:
> > > https://metacpan.org/pod/distribution/Catalyst-Plugin-
> > ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-
> > configuration-file
> > >
> > > On 16 February 2015 at 15:42, Adam Witney  wrote:
> > >> Hi,
> > >>
> > >> I have a Catalyst / DBIx::Class application and I have been storing
> the
> > >> database connection parameters in a config file which is sourced using
> > >> MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security
> > problem
> > >> having the main password in a text file like this, especially if it
> goes
> > >> into git.
> > >>
> > >> Is there a recommended or best practice place to store database
> > >> connection information?
> > >>
> > >> Thanks for any help
> > >>
> > >> Adam
> > >>
> > >> ___
> > >> List: Catalyst@lists.scsys.co.uk
> > >> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> > >> Searchable archive:
> > >> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> > >> Dev site: http://dev.catalyst.perl.org/
> > >
> > > ___
> > > List: Catalyst@lists.scsys.co.uk
> > > Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> > > Searchable archive:
> > > http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> > > Dev site: http://dev.catalyst.perl.org/
> >
> >
> > ___
> > List: Catalyst@lists.scsys.co.uk
> > Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> > Searchable archive:
> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> > Dev site: http://dev.catalyst.perl.org/
>
> ___
> List: Catalyst@lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive:
> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/
>



-- 
http://www.hughbarnard.org
http://www.twitter.com/hughbarnard
http://www.big-wave-heuristics.com/
<http://www.hackney-environment-network.org.uk/>
___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread Adam Witney

Hi,

Thanks for your replies.

I guess my question was more about any security issue of having the database 
username/password stored in a text file.  And what do people consider best 
practice for this from a security point of view?

Thanks

Adam


> -Original Message-
> From: Octavian Rasnita [mailto:orasn...@gmail.com]
> Sent: 16. februára 2015 17:10
> To: The elegant MVC web framework
> Subject: Re: [Catalyst] Where best to store database connection
> information?
> 
> Catalyst uses Config::General to read .conf files. If Config::General is
> configured with the option -UseApacheInclude, then you can use an apache
> "include file.conf" in the .conf file to include another file from another
> directory which is not saved by git.
> 
> Or the option -IncludeDirectories can be also useful so all the files from the
> given directory will be included.
> 
> --Octavian
> 
> - Original Message -
> From: "David Schmidt" 
> To: "The elegant MVC web framework" 
> Sent: Monday, February 16, 2015 6:22 PM
> Subject: Re: [Catalyst] Where best to store database connection
> information?
> 
> 
> > the catalyst configloader can load more then just one file.
> >
> > by default it loads "myapp.conf"
> >
> > if a file named "myapp_local.conf" exists it is loaded aswell.
> >
> > docs:
> > https://metacpan.org/pod/distribution/Catalyst-Plugin-
> ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-
> configuration-file
> >
> > On 16 February 2015 at 15:42, Adam Witney  wrote:
> >> Hi,
> >>
> >> I have a Catalyst / DBIx::Class application and I have been storing the
> >> database connection parameters in a config file which is sourced using
> >> MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security
> problem
> >> having the main password in a text file like this, especially if it goes
> >> into git.
> >>
> >> Is there a recommended or best practice place to store database
> >> connection information?
> >>
> >> Thanks for any help
> >>
> >> Adam
> >>
> >> ___
> >> List: Catalyst@lists.scsys.co.uk
> >> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> >> Searchable archive:
> >> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> >> Dev site: http://dev.catalyst.perl.org/
> >
> > ___
> > List: Catalyst@lists.scsys.co.uk
> > Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> > Searchable archive:
> > http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> > Dev site: http://dev.catalyst.perl.org/
> 
> 
> ___
> List: Catalyst@lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread Octavian Rasnita
Catalyst uses Config::General to read .conf files. If Config::General is 
configured with the option -UseApacheInclude,
then you can use an apache "include file.conf" in the .conf file to include 
another file from another directory which is not saved by git.


Or the option -IncludeDirectories can be also useful so all the files from 
the given directory will be included.


--Octavian

- Original Message - 
From: "David Schmidt" 

To: "The elegant MVC web framework" 
Sent: Monday, February 16, 2015 6:22 PM
Subject: Re: [Catalyst] Where best to store database connection information?



the catalyst configloader can load more then just one file.

by default it loads "myapp.conf"

if a file named "myapp_local.conf" exists it is loaded aswell.

docs: 
https://metacpan.org/pod/distribution/Catalyst-Plugin-ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-configuration-file


On 16 February 2015 at 15:42, Adam Witney  wrote:

Hi,

I have a Catalyst / DBIx::Class application and I have been storing the 
database connection parameters in a config file which is sourced using 
MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security problem 
having the main password in a text file like this, especially if it goes 
into git.


Is there a recommended or best practice place to store database 
connection information?


Thanks for any help

Adam

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: 
http://www.mail-archive.com/catalyst@lists.scsys.co.uk/

Dev site: http://dev.catalyst.perl.org/


___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: 
http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/ 



___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


Re: [Catalyst] Where best to store database connection information?

2015-02-16 Thread David Schmidt
the catalyst configloader can load more then just one file.

by default it loads "myapp.conf"

if a file named "myapp_local.conf" exists it is loaded aswell.

docs: 
https://metacpan.org/pod/distribution/Catalyst-Plugin-ConfigLoader/lib/Catalyst/Plugin/ConfigLoader/Manual.pod#Using-a-local-configuration-file

On 16 February 2015 at 15:42, Adam Witney  wrote:
> Hi,
>
> I have a Catalyst / DBIx::Class application and I have been storing the 
> database connection parameters in a config file which is sourced using 
> MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security problem having 
> the main password in a text file like this, especially if it goes into git.
>
> Is there a recommended or best practice place to store database connection 
> information?
>
> Thanks for any help
>
> Adam
>
> ___
> List: Catalyst@lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/


[Catalyst] Where best to store database connection information?

2015-02-16 Thread Adam Witney
Hi,

I have a Catalyst / DBIx::Class application and I have been storing the 
database connection parameters in a config file which is sourced using 
MYAPP_CONFIG_LOCAL_SUFFIX. But this seems a bit of a security problem having 
the main password in a text file like this, especially if it goes into git.

Is there a recommended or best practice place to store database connection 
information?

Thanks for any help

Adam

___
List: Catalyst@lists.scsys.co.uk
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
Dev site: http://dev.catalyst.perl.org/