Uploaded image for project: 'Insights Experiences'
  1. Insights Experiences
  2. HMS-4433

Allow setting user passwords in Image builder

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Done
    • Icon: Major Major
    • CY24Q3
    • None
    • Image Builder
    • None
    • User password in hosted Image Builder
    • 20
    • 0% To Do, 0% In Progress, 100% Done
    • True

      Goal:

      • Allow passing user password when creating blueprint to allow creating users with sudo
        • Note: Passwordless sudo is not an option due to security (we are actually aiming at building more secure images, this would undermine the effort)
      • Password needs to be encoded and salted before saving
      • Password can never leave the database through API read - we need to filter it out.

      Acceptance Criteria:

      • Verify user and passwords can be set to create for blueprints in hosted image builderĀ 
      • Verify its not possible to retrieve the password through API

      Open questions:

      • How to filter out the password from API reads?
      • How to encrypt and salt the passwords?

      Additional info

      • Composer already supports passing password, so we assume there will be no change in composer necessary.
      • Composer is crypting the password when passed to it in plain text, but allows passing already crypted password

              awaltlov@redhat.com Andrea Waltlova
              oezr@redhat.com Ondrej Ezr
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: