Christian Mueller created GEOS-5256 |
Issue Type: |
Improvement |
Affects Versions: |
2.2-RC2, 2.2-beta2 |
Assignee: |
|
Components: |
Security |
Created: |
07/Aug/12 8:34 AM |
Description: |
Geoserver 2.2.x introduces a new administrative user called “root”. The default password is “geoserver”. This opens a security leak in secured production environments. Solution: During migration of the security directory, the logic figures out the password of the “admin” user and uses this password instead. Can somebody review: https://github.com/mcrmcr/geoserver-1/commit/e1d2bac9685a2581736ca2d9befe13553d647754 |
Fix Versions: |
2.3-beta1, 2.2-RC3 |
Project: |
|
Priority: |
Blocker |
Reporter: |