[META] Update all instances of admin:admin across different repositories
Closed this issue ยท 45 comments
Description
There are many instances of admin:admin credentials usage across different repositories. They will be affected by the change to replace hard-coded admin password with a dynamic value. This issue requests fixing all those instances of admin credentials to address this breaking change.
Acceptance Criteria
- All hard-coded instances across repos are addressed
- Ensure that tests, if any, work as expected
Tasks
Search and update the references to admin:admin, password admin and demo install script in following repos, as required:
(to track work done, tag the PR next to the repo name)
(Legend: โ - no updates, ๐ - in progress, โณ - Waiting 2.12 release, โ - complete)
| Status | Repo | PR | Issue | Notes |
|---|---|---|---|---|
| โณ | logstash-output-opensearch | #233 | #234 | will be merged post 2.12 release |
| โณ | opensearch-benchmark | #430 | #474 | will be merged post 2.12 release |
| โณ | opensearch-go | #449 | #459 | will be merged post 2.12 release |
| โณ | opensearch-js | #669, #707 | #699 | will be merged post 2.12 release |
| โณ | opensearch-migrations | #480 | #479 | will be merged post 2.12 release |
| โณ | opensearch-py | #631 | #648 | will be merged post 2.12 release |
| โณ | opensearch-rs | #234 | #236 | will be merged post 2.12 release |
| โณ | opensearch-ruby | #217 | #222 | will be merged post 2.12 release |
| โณ | reporting-cli | #56 | #58 | will be merged post 2.12 release |
| โณ | terraform-provider-opensearch | #138 | #146 | will be merged post 2.12 release |
[Triage] This is a meta tracking issue for replacing default credential usage in the cluster.
Relevant line in opensearch-build repo: https://github.com/opensearch-project/opensearch-build/blob/main/scripts/default/integtest.sh#L92
CI references to admin:admin :https://github.com/search?q=org%3Aopensearch-project+admin%3Aadmin&type=code&p=1
What version of OpenSearch will have the new password? Data Prepper actually has quite a few occurrences of the password admin. Search for password=admin, password: admin, password: "admin".
@dlvenable it will be for version 2.12 and above
Most references in this repo: seem to disable install demo config: https://github.com/opensearch-project/opensearch-benchmark/blob/main/osbenchmark/resources/docker-compose.yml.j2#L18, I don't think we need to do anything for this repo, but maybe we should make an issue and tag maintainers.
https://github.com/opensearch-project/opensearch-php/actions/runs/7250326156/job/19750248987 - opensearch-php is running without security it seems like, so no changes necessary
opensearch-project/opensearch-build#4302 - this means that all repos which still need to maintain their own integtest.sh files should be switching to admin:myStrongPassword123! as new default creds
[1/4/2024] Current status:
PRs we are blocked for reviews on (build related):
opensearch-project/opensearch-build-libraries#357 (Blocked on rpm/deb decision)
opensearch-project/helm-charts#504 (blocked on review)
opensearch-project/helm-charts#503 (blocked on review)
opensearch-project/terraform-provider-opensearch#138 (in progress)
opensearch-project/opensearch-build#4302 (in progress)
opensearch-project/opensearch-build#4250 (blocked on review)
opensearch-project/opensearch-build#4274 (blocked on review)
opensearch-project/opensearch-k8s-operator#692 (blocked on review)
Other PRs we should merge before 2.12.0 release (plugins):
opensearch-project/opensearch-dashboards-functional-test#981 (In progress)
opensearch-project/cross-cluster-replication#1298 (In progress)
All other PRs in this meta will be turned into draft and merged in after release (ETA: EOD today, 1/4/2024)
adding @bbarani to keep this in his radar
Right now we have 27 non-compliant/unknown issues
Right now we have 27 non-compliant/unknown issues
This number is down to 22 now.
-
For AD:
pr for addressing anomaly-detection: opensearch-project/anomaly-detection#1134 -
For AD-Dashboard:
No action needed as there's no reference of using theadmin:admincredential
Please help updating AD and AD-Dashboard status in the Task sheet in the issue description above (I cannot edit it..
Please help updating AD and AD-Dashboard status in the Task sheet in the issue description above (I cannot edit it..
Already updated.
Please help updating Neural Search status in the Task sheet in the issue description above (I cannot edit it.)
cc: @DarshitChanpura
[Update: 01/24/'24]
| Status | Count |
|---|---|
| Will be merged post release โ | 10 |
| In Progress ๐ | 8 |
| No updates โ | 11 |
| Complete โ | 21 |
[Update: 01/25/'24]
| Status | Count |
|---|---|
| Will be merged post release โ | 10 |
| In Progress ๐ | 11 |
| No updates โ | 5 |
| Complete โ | 24 |
[Update: 01/26/'24]
| Status | Count |
|---|---|
| No updates โ | 2 |
| In Progress ๐ | 7 |
| Will be merged post release โ | 9 |
| Complete โ | 32 |
[Update: 01/29/'24]
| Status | Count |
|---|---|
| No updates โ | 2 |
| In Progress ๐ | 8 |
| Will be merged post release โ | 9 |
| Complete โ | 32 |
[Update: 01/30/'24]
| Status | Count |
|---|---|
| โ No updates | 2 |
| ๐ In Progress | 7 |
| โ Will be merged post release | 9 |
| โ Complete | 33 |
[Update: 01/31/'24]
| Status | Count |
|---|---|
| โ No updates | 2 |
| ๐ In Progress | 6 |
| โ Will be merged post release | 10 |
| โ Complete | 33 |
[Update: 02/01/'24]
| Status | Count |
|---|---|
| โ No updates | 1 |
| ๐ In Progress | 4 |
| โ Will be merged post release | 10 |
| โ Complete | 36 |
[Update: 02/02/'24]
| Status | Count |
|---|---|
| โ No updates | 1 |
| ๐ In Progress | 4 |
| โ Will be merged post release | 10 |
| โ Complete | 37 |
[Update: 02/05/'24]
| Status | Count |
|---|---|
| โ No updates | 1 |
| ๐ In Progress | 5 |
| โ Will be merged post release | 10 |
| โ Complete | 37 |
[Update: 02/06/'24]
| Status | Count |
|---|---|
| โ No updates | 0 |
| ๐ In Progress | 2 |
| โ Will be merged post release | 9 |
| โ Complete | 42 |
[Update: 02/07/'24]
| Status | Count |
|---|---|
| โ No updates | 0 |
| ๐ In Progress | 2 |
| โ Will be merged post release | 9 |
| โ Complete | 42 |
[Update: 02/08/'24]
| Status | Count |
|---|---|
| โ No updates | 0 |
| ๐ In Progress | 0 |
| โ Will be merged post release | 11 |
| โ Complete | 42 |
Next update will be post 2.12 release. This task is no longer a blocker for 2.12
[Update: 02/22/'24]
| Status | Count |
|---|---|
| โ No updates | 0 |
| ๐ In Progress | 0 |
| โณ Will be merged post release | 9 |
| โ Complete | 44 |
This is the last update on this issue. The maintainers of PRs with โณ status have been nudged to bring this across the finish line. Closing this as the feature has been delivered in 2.12.