Red Hat Bugzilla – Bug 1019990
Password entered into installer is written to overlord-idp-users in plain text
Last modified: 2014-02-06 10:26:45 EST
Description of problem:
Version-Release number of selected component (if applicable):
Steps to Reproduce:
I believe this will be resolved post-beta with the use of the vault.
This has been addressed by removing the overlord-idp-*.properties files. The Overlord SSO IDP now uses the EAP application realm as its source for credentials rather than its own properties files.
The installer should change to reflect this reality. I *think* the installer should be asking for two passwords:
1) the Management user
2) an Application user
The former is used to log into the EAP management console.
The latter is used to log into the FSW6 UI applications, including:
* BPEL console
* S-RAMP UI
* DTGov UI
* Gadget Web (rtgov UI)
The installer should change so that it prompts for the application user and then creates that user via "add-user.sh" or equivalent.
Handing this BZ over to thauser to complete the installer part.
These changes have been made for ER7.
File removed in ER7