7:17 a.m.
Hello
I'm a contributor to the Android Client of Hawkular.
On the Gitter channel I suggested that we should give the user an option to
change the password. Currently there is no REST API for that. This will be
very helpful if the credentials of the user are compromised.
Heiko W. Rupp asked me suggest this here.
If I can help with this, please let me know.
Regards
M. Murad
GitHub <http://github.com/free4murad>
3:33 a.m.
Hey,
On 17 Apr 2017, at 14:17, Mohammad Murad wrote:
On the Gitter channel I suggested that we should give the user an
option to
change the password. Currently there is no REST API for that. This will be
very helpful if the credentials of the user are compromised.
Thank you for bringing this up.
I agree that there should be some way of doing that, but as it
stands right now it is also tricky from a technical standpoint.
One part is on the Hawkular-services server itself to change
the password. The other part is also to convey this change to
connected agents. And in the case that they are running in
(Docker) Containers also to propagate the change there
(be it for a new image build, be it to set the environment
accordingly).
On the server we currently set up credentials via add-user
on startup (if I recall correctly). This would also need to change.
If the agent is mutable, we could probably forward the password
change via the operations (web-socket) to the agents, which
store the new credentials and use them from there on.
The immutable agents (in Containers) could use the same
mechanisms to change the in-memory credentials for the
running agent.
Leaves us with procedures to change the environment/image
Heiko
2820
days inactive
2829
days old
1 comments
2 participants
participants (2)
-
Heiko W.Rupp -
Mohammad Murad