Bug 541280 - Add password field to user profile, to be used as root password on provisioned system
Summary: Add password field to user profile, to be used as root password on provisione...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Beaker
Classification: Retired
Component: inventory
Version: 0.4
Hardware: All
OS: Linux
low
medium
Target Milestone: ---
Assignee: Steven Lawrance
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2009-11-25 13:21 UTC by Raymond Mancy
Modified: 2019-05-22 13:40 UTC (History)
7 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2012-03-15 00:16:41 UTC
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 569909 0 low CLOSED RFE: please add possibility to use ssh keys 2021-02-22 00:41:40 UTC

Internal Links: 569909

Description Raymond Mancy 2009-11-25 13:21:39 UTC
This ticket was merged from Trac, original URL is http://fedorahosted.org/beaker/ticket/25
 Add password field to user profile, to be used as root password on provisioned system.

Should work like this:
{{{
#!python
if password_is_specified_in("Kickstart Metadata"):
    use_it
elif password_is_specified_in(users_profile):
    use_it
else:
    use_default
}}}

KS metadata overrides user profile - it is analogical to command line option overriding configuration file.

Optionally (controlled by setup option?): if password entered in the field is clear-text, convert it to MD5 hash before saving.

Comment 1 Raymond Mancy 2009-11-25 13:21:42 UTC
Evan !McNabb wrote:

> To take it a step further... make it possible to upload a public ssh key
> and have that be used on any of the systems that I install. It would be
> nice to not have to type a password at all, especially for systems that
> I need to connect to repeatedly.
> 
> -Evan

Good idea. Actually I was thinking of using mechanism similar to PAM. BeakerPPAMM - Pluggable PAM Modules ;-) I am not an expert in Web framewroks - is there anything like that?

We would need PPAMM to provide methods for:
 * changing DB structure - add new table or use key_value for users instead of systems
 * changing User profile form
 * handling inserts/changes/deletes
 * changing KS accordingly
It seems Beaker (Cobbler) specific.

Comment 2 Bill Peck 2011-08-16 15:09:05 UTC
I would hold off on ssh keys for now, Since we would need to support passwords no matter what since you can't use the key over the serial console.

Comment 3 Steven Lawrance 2011-09-15 23:07:51 UTC
Basic patch is up on gerrit but bumping until password policy is agreed upon.


Note You need to log in before you can comment on or make changes to this bug.