By default passwords (e.g. the default password for redis or mysql) are configured in plain text in the configuration files. However we provide a mechanism how so that this sensitive information can be encrypted. The encryption happens on installation of squirro. There are three different ways to encrypt values in configuration files:
...
This is very similar to the previous approach but the the encryption key is not stored in a file instead of an environment variable but in a file. For this to work you set the value of the env variable 'SQ_ENCRYPTION_KEY_FILE' to the (absolute) path of a file containing nothing but the encryption key.
...