summaryrefslogtreecommitdiff
path: root/docs/source/markdown/podman-run.1.md
diff options
context:
space:
mode:
authorAshley Cui <acui@redhat.com>2021-03-16 16:12:32 -0400
committerAshley Cui <acui@redhat.com>2021-03-16 16:18:58 -0400
commit3d01d42f26166cb9c5ae524cf80979d82a9f2ebd (patch)
tree6cf7ce947a9d9a325f713038e672e18850e32bc9 /docs/source/markdown/podman-run.1.md
parent604459b404ed190f51e8b368c619323317078232 (diff)
downloadpodman-3d01d42f26166cb9c5ae524cf80979d82a9f2ebd.tar.gz
podman-3d01d42f26166cb9c5ae524cf80979d82a9f2ebd.tar.bz2
podman-3d01d42f26166cb9c5ae524cf80979d82a9f2ebd.zip
Docs: removing secrets is safe for in-use secrets
Add docs explaining that it is safe to remove a secret that is in use by a container: secrets are copied and mounted into the container at creation Signed-off-by: Ashley Cui <acui@redhat.com>
Diffstat (limited to 'docs/source/markdown/podman-run.1.md')
-rw-r--r--docs/source/markdown/podman-run.1.md5
1 files changed, 5 insertions, 0 deletions
diff --git a/docs/source/markdown/podman-run.1.md b/docs/source/markdown/podman-run.1.md
index 78b036cee..f61344099 100644
--- a/docs/source/markdown/podman-run.1.md
+++ b/docs/source/markdown/podman-run.1.md
@@ -885,6 +885,11 @@ A secret is a blob of sensitive data which a container needs at runtime but
should not be stored in the image or in source control, such as usernames and passwords,
TLS certificates and keys, SSH keys or other important generic strings or binary content (up to 500 kb in size).
+Secrets are copied and mounted into the container when a container is created. If a secret is deleted using
+`podman secret rm`, the container will still have access to the secret. If a secret is deleted and
+another secret is created with the same name, the secret inside the container will not change; the old
+secret value will still remain.
+
Secrets are managed using the `podman secret` command
#### **--security-opt**=*option*