[BUG] Naming of initialAdminPassword doesn't comply with convention #3842

dblock · 2023-12-13T17:02:37Z

What is the bug?

I found

security/src/main/java/org/opensearch/security/tools/democonfig/SecuritySettingsConfigurer.java

Line 97 in e698315

String initialAdminPassword = System.getenv().get("initialAdminPassword");

that relies on an environment variable initialAdminPassword. This feels at least "unusual". Most variables I've seen are OPENSEARCH_SOMETHING_SOMETHING.

What is the expected behavior?

The variable should be OPENSEARCH_ADMIN_PASSWORD or OPENSEARCH_INITIAL_ADMIN_PASSWORD.

The text was updated successfully, but these errors were encountered:

peternied · 2023-12-13T18:06:01Z

Thanks for filing @dblock - I agree with this suggestion. I'd vote for OPENSEARCH_INITIAL_ADMIN_PASSWORD

DarshitChanpura · 2023-12-13T18:29:03Z

Ty @dblock for filing this. I've created a PR to update the name: #3843
Please feel free to review this.

…be compliant with opensearch naming convention (#3843) ### Issues Resolved - Resolves #3842 ### Testing - automated tests ### Check List - [x] New functionality includes testing ~- [ ] New functionality has been documented~ - [x] Commits are signed per the DCO using --signoff By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. For more information on following Developer Certificate of Origin and signing off your commits, please check [here](https://github.com/opensearch-project/OpenSearch/blob/main/CONTRIBUTING.md#developer-certificate-of-origin). --------- Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

…be compliant with opensearch naming convention (opensearch-project#3843) ### Issues Resolved - Resolves opensearch-project#3842 ### Testing - automated tests ### Check List - [x] New functionality includes testing ~- [ ] New functionality has been documented~ - [x] Commits are signed per the DCO using --signoff By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. For more information on following Developer Certificate of Origin and signing off your commits, please check [here](https://github.com/opensearch-project/OpenSearch/blob/main/CONTRIBUTING.md#developer-certificate-of-origin). --------- Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

dblock · 2023-12-14T19:33:47Z

Thanks for filing @dblock - I agree with this suggestion. I'd vote for OPENSEARCH_INITIAL_ADMIN_PASSWORD

And looking at https://github.com/opensearch-project/opensearch-py/pull/631/files#diff-a3c4761b16aa51b10e83377d99fec8879c360931ae22d98f2181cac72e207d29, we don't want it to be something like users.admin.password=...?

…be compliant with opensearch naming convention (opensearch-project#3843) ### Issues Resolved - Resolves opensearch-project#3842 ### Testing - automated tests ### Check List - [x] New functionality includes testing ~- [ ] New functionality has been documented~ - [x] Commits are signed per the DCO using --signoff By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. For more information on following Developer Certificate of Origin and signing off your commits, please check [here](https://github.com/opensearch-project/OpenSearch/blob/main/CONTRIBUTING.md#developer-certificate-of-origin). --------- Signed-off-by: Darshit Chanpura <dchanp@amazon.com> Signed-off-by: Prabhas Kurapati <prabhask@berkeley.edu>

…be compliant with opensearch naming convention (opensearch-project#3843) ### Issues Resolved - Resolves opensearch-project#3842 ### Testing - automated tests ### Check List - [x] New functionality includes testing ~- [ ] New functionality has been documented~ - [x] Commits are signed per the DCO using --signoff By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. For more information on following Developer Certificate of Origin and signing off your commits, please check [here](https://github.com/opensearch-project/OpenSearch/blob/main/CONTRIBUTING.md#developer-certificate-of-origin). --------- Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

dblock added bug Something isn't working untriaged Require the attention of the repository maintainers and may need to be prioritized labels Dec 13, 2023

peternied removed the untriaged Require the attention of the repository maintainers and may need to be prioritized label Dec 13, 2023

derek-ho assigned DarshitChanpura Dec 13, 2023

DarshitChanpura mentioned this issue Dec 13, 2023

Renames initialAdminPassword to OPENSEARCH_INITIAL_ADMIN_PASSWORD to be compliant with opensearch naming convention #3843

Merged

2 tasks

stephen-crawford closed this as completed in #3843 Dec 13, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[BUG] Naming of initialAdminPassword doesn't comply with convention #3842

[BUG] Naming of initialAdminPassword doesn't comply with convention #3842

dblock commented Dec 13, 2023

peternied commented Dec 13, 2023

DarshitChanpura commented Dec 13, 2023

dblock commented Dec 14, 2023

[BUG] Naming of initialAdminPassword doesn't comply with convention #3842

[BUG] Naming of initialAdminPassword doesn't comply with convention #3842

Comments

dblock commented Dec 13, 2023

peternied commented Dec 13, 2023

DarshitChanpura commented Dec 13, 2023

dblock commented Dec 14, 2023