diff options
| author | Julien Lancelot <julien.lancelot@sonarsource.com> | 2020-11-27 09:16:06 +0100 |
|---|---|---|
| committer | sonartech <sonartech@sonarsource.com> | 2020-12-02 20:06:57 +0000 |
| commit | 2c21bdec38460b793305079d65247cb548dd440a (patch) | |
| tree | bdb6fe8c854b8165fffbc52023d8fafa9cef6a03 /server/sonar-db-migration/src | |
| parent | 89d9f0efa05022bb7577ff0d2014accc580da0a6 (diff) | |
| download | sonarqube-2c21bdec38460b793305079d65247cb548dd440a.tar.gz sonarqube-2c21bdec38460b793305079d65247cb548dd440a.zip | |
SONAR-14175 SONAR-14176 Detect usage of admin account with default credential
SONAR-14175 Add a startup task to detect admin default credential usage and set reset_password flag to true
SONAR-14176 Warn administrators when default admin credential is detected
Diffstat (limited to 'server/sonar-db-migration/src')
| -rw-r--r-- | server/sonar-db-migration/src/main/java/org/sonar/server/platform/db/migration/version/v00/PopulateInitialSchema.java | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/server/sonar-db-migration/src/main/java/org/sonar/server/platform/db/migration/version/v00/PopulateInitialSchema.java b/server/sonar-db-migration/src/main/java/org/sonar/server/platform/db/migration/version/v00/PopulateInitialSchema.java index 0e971237b62..b98a48b763d 100644 --- a/server/sonar-db-migration/src/main/java/org/sonar/server/platform/db/migration/version/v00/PopulateInitialSchema.java +++ b/server/sonar-db-migration/src/main/java/org/sonar/server/platform/db/migration/version/v00/PopulateInitialSchema.java @@ -41,6 +41,7 @@ public class PopulateInitialSchema extends DataChange { private static final String ADMINS_GROUP = "sonar-administrators"; private static final String USERS_GROUP = "sonar-users"; private static final String ADMIN_USER = "admin"; + private static final String ADMIN_CRYPTED_PASSWORD = "$2a$12$uCkkXmhW5ThVK8mpBvnXOOJRLd64LJeHTeCkSuB3lfaR2N0AYBaSi"; private static final List<String> ADMIN_ROLES = Arrays.asList("admin", "profileadmin", "gateadmin", "provisioning", "applicationcreator", "portfoliocreator"); private final System2 system2; @@ -78,14 +79,15 @@ public class PopulateInitialSchema extends DataChange { "(uuid, login, name, email, external_id, external_login, external_identity_provider, user_local, crypted_password, salt, hash_method, is_root, onboarded, " + "created_at, updated_at)" + " values " + - "(?, ?, 'Administrator', null, 'admin', 'admin', 'sonarqube', ?, '$2a$12$uCkkXmhW5ThVK8mpBvnXOOJRLd64LJeHTeCkSuB3lfaR2N0AYBaSi', null, 'BCRYPT', ?, ?, ?, ?)") + "(?, ?, 'Administrator', null, 'admin', 'admin', 'sonarqube', ?, ?, null, 'BCRYPT', ?, ?, ?, ?)") .setString(1, uuidFactory.create()) .setString(2, ADMIN_USER) .setBoolean(3, true) - .setBoolean(4, false) - .setBoolean(5, true) - .setLong(6, now) + .setString(4, ADMIN_CRYPTED_PASSWORD) + .setBoolean(5, false) + .setBoolean(6, true) .setLong(7, now) + .setLong(8, now) .execute() .commit(); |