Uploaded image for project: 'ONAP JIRA Security Issues'
  1. ONAP JIRA Security Issues
  2. OJSI-188

Hard coded password used for all oom deployments

CloneClone+Clone++
    XMLWordPrintable

    Details

    • Type: Task
    • Status: Fix In Progress
    • Priority: High
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: El Alto Release
    • Labels:
    • OJSI Grant Project Access:
      OJSI-OOM

      Description

      There is a lot of passwords hard-coded in OOM charts and other projects repositories.
      They are scatter around many different files and it’s very hard to find and change them during deployment. Deploying ONAP with those default passwords makes it insecure.

       

      OOM should require a separate config file with passwords to be created by the user during deployment time or generate such file with random passwords if they are not provided by the user.

        Attachments

          Issue Links

          # Subject Branch Project Status CR V

            Activity

              People

              Assignee:
              sdesbure Sylvain Desbureaux
              Reporter:
              kopasiak Krzysztof Opasiak
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: