cyberark · Arminmsg · Mar 21, 2025 · Mar 21, 2025 · Apr 22, 2025
diff --git a/README.md b/README.md
@@ -362,6 +362,14 @@ In the above example, the first secret section is `db/sqlusername|sql_username`.
 
 The second secret section is `db/sql_password`.  When no name is given for the environment variable, the Conjur Variable Name will be used.  In this example, the value would be set to `SQL_PASSWORD` as the environment variable name.
 
+### Multiline
+```
+secrets: |
+   db/sqlusername|sql_username;
+   db/sql_password;
+```
+For improved readability the secret section accepts multiline values.  The `|` separates the Conjur Variable ID from the environment variable that will contain the value of the Conjur Variable's value.  `;` and `newline` separate the secrets sections.
+
 ## Security
 
 ### Protecting Arguments

diff --git a/entrypoint.sh b/entrypoint.sh
@@ -66,8 +66,12 @@ conjur_authn() {
 }
 
 array_secrets() {
-    IFS=';'
-    read -ra SECRETS <<< "$INPUT_SECRETS" # [0]=db/sqlusername | sql_username [1]=db/sql_password
+      IFS=$'\n' read -r -d '' -a array <<< "$INPUT_SECRETS"
+      for i in "${!array[@]}"; do
+        # trim whitespace and trailing ";"
+        line=$(echo "${array[$i]}"|sed 's/^[[:space:]]*//;s/[[:space:];]*$//')
+    	SECRETS+=($line)
+      done
 }
 
 set_secrets() {