| Summary: | Password entered into installer is written to overlord-idp-users in plain text | ||
|---|---|---|---|
| Product: | [JBoss] JBoss Fuse Service Works 6 | Reporter: | Len DiMaggio <ldimaggi> |
| Component: | Installer | Assignee: | Thomas Hauser <thauser> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Jiri Pechanec <jpechane> |
| Severity: | urgent | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 6.0.0 GA | CC: | atangrin, jsedlace, soa-p-jira |
| Target Milestone: | ER7 | ||
| Target Release: | 6.0.0 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2014-02-06 15:26:45 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
|
Description
Len DiMaggio
2013-10-16 18:06:49 UTC
I believe this will be resolved post-beta with the use of the vault. This has been addressed by removing the overlord-idp-*.properties files. The Overlord SSO IDP now uses the EAP application realm as its source for credentials rather than its own properties files. The installer should change to reflect this reality. I *think* the installer should be asking for two passwords: 1) the Management user 2) an Application user The former is used to log into the EAP management console. The latter is used to log into the FSW6 UI applications, including: * BPEL console * S-RAMP UI * DTGov UI * Gadget Web (rtgov UI) The installer should change so that it prompts for the application user and then creates that user via "add-user.sh" or equivalent. Handing this BZ over to thauser to complete the installer part. These changes have been made for ER7. File removed in ER7 |