Menu
▾
▴
Re: [Exist-development] Problem with Security stuff....
|
From: Andrzej J. T. <an...@ch...> - 2011-04-28 15:03:17
|
Dmitriy:
> While doing this operation you authenticated on server as?
A user with DBA group membership! But it's not the "admin" user.
> BTW, use add to change looks wrong to me :-)
Maybe so, but that is the only way you could do something like a password change using the ant tasks
and it worked perfectly well in the past.
I suppose we could write a changeUser Ant task.....but it would be better to stay consistent with
how it behaved in the past.
> On Thu, Apr 28, 2011 at 12:53 AM, Andrzej Jan Taramina <an...@ch...> wrote:
>
> It used to be that you could change the admin user's password using an ant task of the following
> structure:
>
> <exist:adduser failonerror="false" uri="${exist.url}/xmlrpc/db" user="anotherAdminUser"
> password="anotherAdminUserPassword" name="admin" secret="newAdminPassword" home="/db"
> primaryGroup="dba"/>
>
> Now it errors with the following message:
>
> [exist:adduser] XMLDB exception caught: Failed to invoke method addAccount in class
> org.exist.xmlrpc.RpcConnection: you are not allowed to change this user
>
> Why is it that we can no longer change the admin password in this way? Leaving the admin password
> unset is a bad idea, from a security perspective, and some of us want to be able to automate this
> reset using Ant, as we've done in the past.
--
Andrzej Taramina
Chaeron Corporation: Enterprise System Solutions
http://www.chaeron.com
|
