One of the biggest drawbacks of Ghost CMS is the lack of full-text search. Even alternatives like Algolia are too limited to be considered full-text search. Using OpenSearch as database and a webhook I show how to implement a relatively performant full text search in Ghost CMS.
Those who want to test APIs usually need passwords or tokens, which almost all API test clients keep plaintext. With Hashicorp Vault as a secret manager, however, you have a way to remedy this deficiency as well.
Two part series: Password security with Hashicorp Vault and Ansible for Docker
Secure your Docker passwords with Hashicorp Vault and Ansible (Part 2: Automate Docker startup with Ansible)
In the first part I showed how to set up Hashicorp. Now the whole thing will be automated.
Hashicorp Vault is an incredible tool when it comes to keeping passwords safe on the server. Using Authelia as an example, I will show how to keep Docker passwords secure on the server even without Docker swarm.
Relatively unknown are Nextcloud's audit logs. If you enable them, the admin has the possibility to check his instance for suspicious activities.
Few know that you can also configure Nextcloud via environment variables. With this possibility you can save the storage of passwords in the Nextcloud config.php.