docs: Comment for complex password requiremens on OpenSearch

2025-10-10 08:56:19 +13:00 · 2025-10-10 08:56:19 +13:00 · 75c7c97af7
commit 75c7c97af7
parent 140d24603d
1 changed files with 2 additions and 0 deletions
--- a/.env.example
+++ b/.env.example
@ -16,6 +16,8 @@ NUDGES_FLOW_ID=ebc01d31-1976-46ce-a385-b0240327226c
 # Set a strong admin password for OpenSearch; a bcrypt hash is generated at
 # container startup from this value. Do not commit real secrets.
 # must match the hashed password in secureconfig, must change for secure deployment!!!
+# NOTE: if you set this by hand, it must be a complex password: 
+# mixed case, numbers, and symbols greater than 10 characters 
 OPENSEARCH_PASSWORD=

 # make here https://console.cloud.google.com/apis/credentials