When using docker compose, vikunja currently offers the option to add the database password as a environment variable (“VIKUNJA_DATABASE_PASSWORD”). In order to improve security, it would be great if the option could be added to use an environment variable “VIKUNJA_DATABASE_PASSWORD_FILE”, which represents the path to a file containing the password. Docker documents this here: How to use secrets in Docker Compose | Docker Docs. The same applies to VIKUNJA_SERVICE_JWTSECRET.
This would add the possibility to easily split the compose.yml file from the password and manage permissions seperately.