Project

General

Profile

Actions
Copy link

Bug #8956

closed

Remove secret-token generation and shared secret from katello's specfile

Added by Mike McCune over 10 years ago. Updated almost 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Difficulty:
trivial
Triaged:
Bugzilla link:
Pull request:
https://github.com/Katello/katello/pull/5001
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

We include a stanza in the katello spec file that we most likely do not need anymore:

https://github.com/Katello/katello/blob/master/deploy/katello.spec

...

%post
#Generate secret token if the file does not exist
#(this must be called both for installation and upgrade)
TOKEN=/etc/katello/secret_token
  1. this file must not be world readable at generation time
    umask 0077
    test -f $TOKEN || (echo $(</dev/urandom tr -dc A-Za-z0-9 | head -c128) > $TOKEN \
    && chmod 600 $TOKEN && chown katello:katello $TOKEN)

investigate if this is necessary and if not, remove it.

Also investigate and remove the entries for:

usermod -a -G katello-shared tomcat

Actions
Copy link

Also available in: Atom PDF