Error when POSTGRES_PASSWORD is unset like mysql

Add POSTGRES_DISABLE_PASSWORDS to bring back old behavior and mirror MYSQL_ALLOW_EMPTY_PASSWORD, but add warning when it is used since it disables all passwords

Author: yosifkit

10/alpine/docker-entrypoint.sh

@@ -87,7 +87,9 @@ docker_init_database_dir() {
 	fi
 }
 
-# print large warning if POSTGRES_PASSWORD is empty
+# print large warning if POSTGRES_PASSWORD is long
+# error if both POSTGRES_PASSWORD and POSTGRES_DISABLE_PASSWORDS are not set
+# print large warning if POSTGRES_DISABLE_PASSWORDS is set
 docker_verify_minimum_env() {
 	# check password first so we can output the warning before postgres
 	# messes it up
@@ -103,22 +105,31 @@ docker_verify_minimum_env() {
 
 		EOWARN
 	fi
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -z "$POSTGRES_PASSWORD" ] && [ -z "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		# The - option suppresses leading tabs but *not* spaces. :)
+		cat >&2 <<-'EOE'
+			Error: Database is uninitialized and superuser password is not specified.
+			       You must specify either POSTGRES_PASSWORD or POSTGRES_DISABLE_PASSWORDS
+			       Use "-e POSTGRES_PASSWORD=password" to set it in "docker run".
+		EOE
+		exit 1
+	fi
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		cat >&2 <<-'EOWARN'
 			****************************************************
-			WARNING: No password has been set for the database.
+			WARNING: POSTGRES_DISABLE_PASSWORDS has been set.
 			         This will allow anyone with access to the
-			         Postgres port to access your database. In
-			         Docker's default configuration, this is
+			         Postgres port to access your database without
+			         a password, even if POSTGRES_PASSWORD is set.
+			         In Docker's default configuration, this is
 			         effectively any other container on the same
 			         system.
 
-			         Use "-e POSTGRES_PASSWORD=password" to set
-			         it in "docker run".
+			         It is not recommended to use POSTGRES_DISABLE_PASSWORDS.
+			         Use "-e POSTGRES_PASSWORD=password" instead to
+			         set a password in "docker run".
 			****************************************************
 		EOWARN
-
 	fi
 }
 
@@ -193,10 +204,10 @@ docker_setup_env() {
 	fi
 }
 
-# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_PASSWORD
+# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_DISABLE_PASSWORDS
 pg_setup_hba_conf() {
 	local authMethod='md5'
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		authMethod='trust'
 	fi
 

10/docker-entrypoint.sh

@@ -87,7 +87,9 @@ docker_init_database_dir() {
 	fi
 }
 
-# print large warning if POSTGRES_PASSWORD is empty
+# print large warning if POSTGRES_PASSWORD is long
+# error if both POSTGRES_PASSWORD and POSTGRES_DISABLE_PASSWORDS are not set
+# print large warning if POSTGRES_DISABLE_PASSWORDS is set
 docker_verify_minimum_env() {
 	# check password first so we can output the warning before postgres
 	# messes it up
@@ -103,22 +105,31 @@ docker_verify_minimum_env() {
 
 		EOWARN
 	fi
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -z "$POSTGRES_PASSWORD" ] && [ -z "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		# The - option suppresses leading tabs but *not* spaces. :)
+		cat >&2 <<-'EOE'
+			Error: Database is uninitialized and superuser password is not specified.
+			       You must specify either POSTGRES_PASSWORD or POSTGRES_DISABLE_PASSWORDS
+			       Use "-e POSTGRES_PASSWORD=password" to set it in "docker run".
+		EOE
+		exit 1
+	fi
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		cat >&2 <<-'EOWARN'
 			****************************************************
-			WARNING: No password has been set for the database.
+			WARNING: POSTGRES_DISABLE_PASSWORDS has been set.
 			         This will allow anyone with access to the
-			         Postgres port to access your database. In
-			         Docker's default configuration, this is
+			         Postgres port to access your database without
+			         a password, even if POSTGRES_PASSWORD is set.
+			         In Docker's default configuration, this is
 			         effectively any other container on the same
 			         system.
 
-			         Use "-e POSTGRES_PASSWORD=password" to set
-			         it in "docker run".
+			         It is not recommended to use POSTGRES_DISABLE_PASSWORDS.
+			         Use "-e POSTGRES_PASSWORD=password" instead to
+			         set a password in "docker run".
 			****************************************************
 		EOWARN
-
 	fi
 }
 
@@ -193,10 +204,10 @@ docker_setup_env() {
 	fi
 }
 
-# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_PASSWORD
+# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_DISABLE_PASSWORDS
 pg_setup_hba_conf() {
 	local authMethod='md5'
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		authMethod='trust'
 	fi
 

11/alpine/docker-entrypoint.sh

@@ -87,7 +87,9 @@ docker_init_database_dir() {
 	fi
 }
 
-# print large warning if POSTGRES_PASSWORD is empty
+# print large warning if POSTGRES_PASSWORD is long
+# error if both POSTGRES_PASSWORD and POSTGRES_DISABLE_PASSWORDS are not set
+# print large warning if POSTGRES_DISABLE_PASSWORDS is set
 docker_verify_minimum_env() {
 	# check password first so we can output the warning before postgres
 	# messes it up
@@ -103,22 +105,31 @@ docker_verify_minimum_env() {
 
 		EOWARN
 	fi
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -z "$POSTGRES_PASSWORD" ] && [ -z "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		# The - option suppresses leading tabs but *not* spaces. :)
+		cat >&2 <<-'EOE'
+			Error: Database is uninitialized and superuser password is not specified.
+			       You must specify either POSTGRES_PASSWORD or POSTGRES_DISABLE_PASSWORDS
+			       Use "-e POSTGRES_PASSWORD=password" to set it in "docker run".
+		EOE
+		exit 1
+	fi
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		cat >&2 <<-'EOWARN'
 			****************************************************
-			WARNING: No password has been set for the database.
+			WARNING: POSTGRES_DISABLE_PASSWORDS has been set.
 			         This will allow anyone with access to the
-			         Postgres port to access your database. In
-			         Docker's default configuration, this is
+			         Postgres port to access your database without
+			         a password, even if POSTGRES_PASSWORD is set.
+			         In Docker's default configuration, this is
 			         effectively any other container on the same
 			         system.
 
-			         Use "-e POSTGRES_PASSWORD=password" to set
-			         it in "docker run".
+			         It is not recommended to use POSTGRES_DISABLE_PASSWORDS.
+			         Use "-e POSTGRES_PASSWORD=password" instead to
+			         set a password in "docker run".
 			****************************************************
 		EOWARN
-
 	fi
 }
 
@@ -193,10 +204,10 @@ docker_setup_env() {
 	fi
 }
 
-# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_PASSWORD
+# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_DISABLE_PASSWORDS
 pg_setup_hba_conf() {
 	local authMethod='md5'
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		authMethod='trust'
 	fi
 

11/docker-entrypoint.sh

@@ -87,7 +87,9 @@ docker_init_database_dir() {
 	fi
 }
 
-# print large warning if POSTGRES_PASSWORD is empty
+# print large warning if POSTGRES_PASSWORD is long
+# error if both POSTGRES_PASSWORD and POSTGRES_DISABLE_PASSWORDS are not set
+# print large warning if POSTGRES_DISABLE_PASSWORDS is set
 docker_verify_minimum_env() {
 	# check password first so we can output the warning before postgres
 	# messes it up
@@ -103,22 +105,31 @@ docker_verify_minimum_env() {
 
 		EOWARN
 	fi
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -z "$POSTGRES_PASSWORD" ] && [ -z "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		# The - option suppresses leading tabs but *not* spaces. :)
+		cat >&2 <<-'EOE'
+			Error: Database is uninitialized and superuser password is not specified.
+			       You must specify either POSTGRES_PASSWORD or POSTGRES_DISABLE_PASSWORDS
+			       Use "-e POSTGRES_PASSWORD=password" to set it in "docker run".
+		EOE
+		exit 1
+	fi
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		cat >&2 <<-'EOWARN'
 			****************************************************
-			WARNING: No password has been set for the database.
+			WARNING: POSTGRES_DISABLE_PASSWORDS has been set.
 			         This will allow anyone with access to the
-			         Postgres port to access your database. In
-			         Docker's default configuration, this is
+			         Postgres port to access your database without
+			         a password, even if POSTGRES_PASSWORD is set.
+			         In Docker's default configuration, this is
 			         effectively any other container on the same
 			         system.
 
-			         Use "-e POSTGRES_PASSWORD=password" to set
-			         it in "docker run".
+			         It is not recommended to use POSTGRES_DISABLE_PASSWORDS.
+			         Use "-e POSTGRES_PASSWORD=password" instead to
+			         set a password in "docker run".
 			****************************************************
 		EOWARN
-
 	fi
 }
 
@@ -193,10 +204,10 @@ docker_setup_env() {
 	fi
 }
 
-# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_PASSWORD
+# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_DISABLE_PASSWORDS
 pg_setup_hba_conf() {
 	local authMethod='md5'
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		authMethod='trust'
 	fi
 

12/alpine/docker-entrypoint.sh

@@ -87,7 +87,9 @@ docker_init_database_dir() {
 	fi
 }
 
-# print large warning if POSTGRES_PASSWORD is empty
+# print large warning if POSTGRES_PASSWORD is long
+# error if both POSTGRES_PASSWORD and POSTGRES_DISABLE_PASSWORDS are not set
+# print large warning if POSTGRES_DISABLE_PASSWORDS is set
 docker_verify_minimum_env() {
 	# check password first so we can output the warning before postgres
 	# messes it up
@@ -103,22 +105,31 @@ docker_verify_minimum_env() {
 
 		EOWARN
 	fi
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -z "$POSTGRES_PASSWORD" ] && [ -z "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		# The - option suppresses leading tabs but *not* spaces. :)
+		cat >&2 <<-'EOE'
+			Error: Database is uninitialized and superuser password is not specified.
+			       You must specify either POSTGRES_PASSWORD or POSTGRES_DISABLE_PASSWORDS
+			       Use "-e POSTGRES_PASSWORD=password" to set it in "docker run".
+		EOE
+		exit 1
+	fi
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		cat >&2 <<-'EOWARN'
 			****************************************************
-			WARNING: No password has been set for the database.
+			WARNING: POSTGRES_DISABLE_PASSWORDS has been set.
 			         This will allow anyone with access to the
-			         Postgres port to access your database. In
-			         Docker's default configuration, this is
+			         Postgres port to access your database without
+			         a password, even if POSTGRES_PASSWORD is set.
+			         In Docker's default configuration, this is
 			         effectively any other container on the same
 			         system.
 
-			         Use "-e POSTGRES_PASSWORD=password" to set
-			         it in "docker run".
+			         It is not recommended to use POSTGRES_DISABLE_PASSWORDS.
+			         Use "-e POSTGRES_PASSWORD=password" instead to
+			         set a password in "docker run".
 			****************************************************
 		EOWARN
-
 	fi
 }
 
@@ -193,10 +204,10 @@ docker_setup_env() {
 	fi
 }
 
-# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_PASSWORD
+# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_DISABLE_PASSWORDS
 pg_setup_hba_conf() {
 	local authMethod='md5'
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		authMethod='trust'
 	fi
 

12/docker-entrypoint.sh

@@ -87,7 +87,9 @@ docker_init_database_dir() {
 	fi
 }
 
-# print large warning if POSTGRES_PASSWORD is empty
+# print large warning if POSTGRES_PASSWORD is long
+# error if both POSTGRES_PASSWORD and POSTGRES_DISABLE_PASSWORDS are not set
+# print large warning if POSTGRES_DISABLE_PASSWORDS is set
 docker_verify_minimum_env() {
 	# check password first so we can output the warning before postgres
 	# messes it up
@@ -103,22 +105,31 @@ docker_verify_minimum_env() {
 
 		EOWARN
 	fi
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -z "$POSTGRES_PASSWORD" ] && [ -z "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		# The - option suppresses leading tabs but *not* spaces. :)
+		cat >&2 <<-'EOE'
+			Error: Database is uninitialized and superuser password is not specified.
+			       You must specify either POSTGRES_PASSWORD or POSTGRES_DISABLE_PASSWORDS
+			       Use "-e POSTGRES_PASSWORD=password" to set it in "docker run".
+		EOE
+		exit 1
+	fi
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		cat >&2 <<-'EOWARN'
 			****************************************************
-			WARNING: No password has been set for the database.
+			WARNING: POSTGRES_DISABLE_PASSWORDS has been set.
 			         This will allow anyone with access to the
-			         Postgres port to access your database. In
-			         Docker's default configuration, this is
+			         Postgres port to access your database without
+			         a password, even if POSTGRES_PASSWORD is set.
+			         In Docker's default configuration, this is
 			         effectively any other container on the same
 			         system.
 
-			         Use "-e POSTGRES_PASSWORD=password" to set
-			         it in "docker run".
+			         It is not recommended to use POSTGRES_DISABLE_PASSWORDS.
+			         Use "-e POSTGRES_PASSWORD=password" instead to
+			         set a password in "docker run".
 			****************************************************
 		EOWARN
-
 	fi
 }
 
@@ -193,10 +204,10 @@ docker_setup_env() {
 	fi
 }
 
-# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_PASSWORD
+# append md5 or trust auth to pg_hba.conf based on existence of POSTGRES_DISABLE_PASSWORDS
 pg_setup_hba_conf() {
 	local authMethod='md5'
-	if [ -z "$POSTGRES_PASSWORD" ]; then
+	if [ -n "$POSTGRES_DISABLE_PASSWORDS" ]; then
 		authMethod='trust'
 	fi