Allow only authorised user to fill out setup wizard #2436
Comments
hardillb
added
story
|
I suggest a flag (cmd line, in the flowforge.yml, or both) that will generate a random password on startup, log this and require it to be entered to complete the setup wizard. |
|
This is a requirement for AWS container based applications. |
|
@hardillb why not create an admin user instead, with a generated password they're forced to update after signing in? I think we have the plumbing for password expiry already. |
|
That might work. I will have to work out what that will do to the setup wizard |
|
OK, I have this working. If
And a random 8 char password. The password will be printed to the logs as follows: The user will be prompted to change the password after the wizard completes when they try and log in for the first time, the wizard will still ask for license and telemetry. We will need to add an entry in the docs to explain how to change the email address and name. |
part of #2436 This will create a new admin user when the setup wizard runs if none already exist and `create_admin: true` in the `etc/flowforge.yml` file This is to meet a AWS requirement
Epic
#1942
Description
As a: FlowForge Admin
I want to: be able to securely deploy FF publicly
So that: nobody can use the setup wizard before me to create the first admin user
Which customers would this be availble to
All Users, (CE)
Acceptance Criteria
Have you provided an initial effort estimate for this issue?
I have provided an initial effort estimate
The text was updated successfully, but these errors were encountered: