glassfish
  1. glassfish
  2. GLASSFISH-18318

Install silent option does not store admin password input

    Details

    • Type: Bug Bug
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 3.1.2_b20
    • Fix Version/s: 4.1
    • Component/s: installation
    • Labels:
      None
    • Environment:

      OEL6 system. GF 3.1.2 build20. JDK1.7.0_03. Firefox browser 3.6.17. Typical Install option

      Description

      With the addition of the Domain Info screen (due to security remediation), the user is given the ability to add an "admin password" that is later used to login to the AdminConsole. The GF Installer provides and option to create a "silent" file that records all the user choices and is only supported in the "Typical" scenario. This "silent" file can later be used to do installation without user interaction.

      The issue uncovered is that the option given in the Domain Info (to enter a user admin password) is not being recorded or stored in the "silent" file. The procedure to create the file is as follows:
      1. Get the latest build (ogs-3.1.2-b20-unix.sh*)
      2. Generate the silent file

      • machine $ ogs-3.1.2-b20-unix.sh -n sfile.txt (file in which all the Install actions are recorded)
        3. Run through the Install Typical option and enter a password in the Domain Info screen (admin123)
        4. Complete the installation steps.
        5. Execute the installation using the "silent" file as follows:
      • machine $ ogs-3.1.2-b20-unix.sh -a sfile.txt -s
        6. After the installation completes, start the domain server
        7. Go to the Admin Console (http://localhost:4848)

      You will notice one will be logged into to the Admin Console without any password.

      The expected behavior and when executing the same scenario interactively, the AdminConsole login screen is displayed and one has to enter the admin user and admin password.

      Reporting this bug as low priority because it's a bit late and perhaps risky to fix. Documenting this issue is sufficient at this time.

        Activity

        Hide
        scatari added a comment - - edited

        Enabling silent installer to recognize passwords is an enhancement requiring extensive changes. Marking this as Release notes item to be documented. Here is what should be documented as a limitation.

        "The generated silent file will not contain any passwords and if such files are used for running automated silent installation, then the created GlassFish domain will provide unauthenticated login mechanism".

        Show
        scatari added a comment - - edited Enabling silent installer to recognize passwords is an enhancement requiring extensive changes. Marking this as Release notes item to be documented. Here is what should be documented as a limitation. "The generated silent file will not contain any passwords and if such files are used for running automated silent installation, then the created GlassFish domain will provide unauthenticated login mechanism".
        Hide
        Rebecca Parks added a comment -

        Added to 3.1.2 Release Notes:

        Description

        The GlassFish Server installer provides an option to create a silent file that records all user choices and is only supported in the Typical scenario. This silent file can later be used to perform installation without user interaction.

        The generated silent file does not contain any passwords. If this file is used for running automated silent installation, the created GlassFish Server domain provides an unauthenticated login mechanism.

        Workaround

        Use interactive installation if you want the GlassFish Server domain to require passwords.

        Show
        Rebecca Parks added a comment - Added to 3.1.2 Release Notes: Description The GlassFish Server installer provides an option to create a silent file that records all user choices and is only supported in the Typical scenario. This silent file can later be used to perform installation without user interaction. The generated silent file does not contain any passwords. If this file is used for running automated silent installation, the created GlassFish Server domain provides an unauthenticated login mechanism. Workaround Use interactive installation if you want the GlassFish Server domain to require passwords.
        Hide
        shreedhar_ganapathy added a comment -

        -> Tom Mueller to eval if this will be fixed in 4.0

        Show
        shreedhar_ganapathy added a comment - -> Tom Mueller to eval if this will be fixed in 4.0
        Hide
        Tom Mueller added a comment -

        I confirmed that this problem is there in the OSE installer as well as the OGS installer, however, the only way to get a password prompt via the OSE installer is to use the Custom path, not the Typical path.

        For 4.0 OSE, the Custom path through the installer is going to be disabled (see GLASSFISH-19680) so there will be no opportunity to enter a password when using the 4.0 OSE installer, so this bug does not need to be fixed for 4.0.

        Show
        Tom Mueller added a comment - I confirmed that this problem is there in the OSE installer as well as the OGS installer, however, the only way to get a password prompt via the OSE installer is to use the Custom path, not the Typical path. For 4.0 OSE, the Custom path through the installer is going to be disabled (see GLASSFISH-19680 ) so there will be no opportunity to enter a password when using the 4.0 OSE installer, so this bug does not need to be fixed for 4.0.

          People

          • Assignee:
            Snjezana Sevo-Zenzerovic
            Reporter:
            Alex Pineda
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated: