Motivation
When using a randomly generated password for a database, the url has to be escaped, it adds extra complexity to prepare it in a particular way for the app.

Describe the solution you'd like

I see there are 2 options:

1. Add options to read the database url in a granular format, where there is separate username, password, host, port and other pieces are set. That way cli will raise an issue if the DB url is set same time as the DB options.
2. Add a password specific parameter that allows overriding the password in the DB url

Describe alternatives you've considered
Currently I craft a string in a separate python script before injecting it in the systemd env

Additional context
none