This is an automated email from the ASF dual-hosted git repository.
ffang pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/karaf.git
The following commit(s) were added to refs/heads/main by this push:
new 326d3e9 [KARAF-7086]disable default user karaf in etc/user.properties
by default to make the karaf installation more secure
326d3e9 is described below
commit 326d3e9ccf55c2095eb344538166c5dde2840422
Author: Freeman Fang <[email protected]>
AuthorDate: Mon Mar 29 11:25:01 2021 -0400
[KARAF-7086]disable default user karaf in etc/user.properties by default to
make the karaf installation more secure
---
.../features/base/src/main/resources/resources/etc/users.properties | 4 ++--
.../src/main/java/org/apache/karaf/itests/KarafTestSupport.java | 2 ++
.../resources => itests/test/src/test}/resources/etc/users.properties | 0
3 files changed, 4 insertions(+), 2 deletions(-)
diff --git
a/assemblies/features/base/src/main/resources/resources/etc/users.properties
b/assemblies/features/base/src/main/resources/resources/etc/users.properties
index ace2282..1891183 100644
--- a/assemblies/features/base/src/main/resources/resources/etc/users.properties
+++ b/assemblies/features/base/src/main/resources/resources/etc/users.properties
@@ -29,5 +29,5 @@
# and modifiable via the JAAS command group. These users reside in a JAAS
domain
# with the name "karaf".
#
-karaf = karaf,_g_:admingroup
-_g_\:admingroup = group,admin,manager,viewer,systembundles,ssh
+#karaf = karaf,_g_:admingroup
+#_g_\:admingroup = group,admin,manager,viewer,systembundles,ssh
diff --git
a/itests/common/src/main/java/org/apache/karaf/itests/KarafTestSupport.java
b/itests/common/src/main/java/org/apache/karaf/itests/KarafTestSupport.java
index bd865f0..b267e03 100644
--- a/itests/common/src/main/java/org/apache/karaf/itests/KarafTestSupport.java
+++ b/itests/common/src/main/java/org/apache/karaf/itests/KarafTestSupport.java
@@ -242,6 +242,7 @@ public class KarafTestSupport {
CoreOptions.mavenBundle().groupId("org.apache.karaf.itests").artifactId("common").versionAsInProject(),
CoreOptions.mavenBundle().groupId("javax.annotation").artifactId("javax.annotation-api").versionAsInProject(),
//replaceConfigurationFile("etc/host.key",
getConfigFile("/etc/host.key")),
+
KarafDistributionOption.replaceConfigurationFile("etc/users.properties",
getConfigFile("/etc/users.properties")),
KarafDistributionOption.editConfigurationFilePut("etc/org.apache.karaf.features.cfg",
"updateSnapshots", "none"),
KarafDistributionOption.editConfigurationFilePut("etc/org.ops4j.pax.web.cfg",
"org.osgi.service.http.port", httpPort),
KarafDistributionOption.editConfigurationFilePut("etc/org.apache.karaf.management.cfg",
"rmiRegistryPort", rmiRegistryPort),
@@ -295,6 +296,7 @@ public class KarafTestSupport {
CoreOptions.mavenBundle().groupId("org.apache.servicemix.bundles").artifactId("org.apache.servicemix.bundles.hamcrest").versionAsInProject(),
CoreOptions.mavenBundle().groupId("org.apache.karaf.itests").artifactId("common").versionAsInProject(),
//replaceConfigurationFile("etc/host.key",
getConfigFile("/etc/host.key")),
+
KarafDistributionOption.replaceConfigurationFile("etc/users.properties",
getConfigFile("/etc/users.properties")),
KarafDistributionOption.editConfigurationFilePut("etc/org.apache.karaf.features.cfg",
"updateSnapshots", "none"),
KarafDistributionOption.editConfigurationFilePut("etc/org.ops4j.pax.web.cfg",
"org.osgi.service.http.port", httpPort),
KarafDistributionOption.editConfigurationFilePut("etc/org.apache.karaf.management.cfg",
"rmiRegistryPort", rmiRegistryPort),
diff --git
a/assemblies/features/base/src/main/resources/resources/etc/users.properties
b/itests/test/src/test/resources/etc/users.properties
similarity index 100%
copy from
assemblies/features/base/src/main/resources/resources/etc/users.properties
copy to itests/test/src/test/resources/etc/users.properties
