jackrabbit-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Francisco Carriedo Scher <fcarrie...@gmail.com>
Subject Re: Disabling admin account
Date Thu, 05 Apr 2012 09:14:27 GMT
Thank you very much, i will change the password programmatically then.


2012/4/4 Angela Schreiber <anchela@adobe.com>

> hi francisco
>
> in the default user management implementation that is present with
> jackrabbit the admin user can neither be disabled nor removed.
> you can change the password of that user (User.changePassword).
> the ID of the administrator can be changed in the repository.xml.
>
> if you want to have a different user-mgt implementation you would
> need to change the usermanagement configuration.
>
> kind regards
> angela
>
>
> On 4/2/12 12:43 AM, Francisco Carriedo Scher wrote:
>
>> Hi there,
>>
>> i am trying to disable the admin account and, apart from setting the
>> adminId to my custom value in the repository.xml file i changed the value
>> of the constants of the
>> org.apache.jackrabbit.core.**security.SecurityConstants class. Once
>> recompiled (the core and the Webapp and used via Webdav) i am still able
>> to
>> login having write permissions providing admin:admin credentials:
>>
>>         Repository repository = JcrUtils.getRepository(repoURL +
>> "/server");
>>         BufferedReader br = new BufferedReader(new
>> InputStreamReader(System.in));
>>         Session session = repository.login(new SimpleCredentials("admin",
>> "admin".toCharArray()));
>>
>> What else should be done to erase the admin account?
>>
>> Thanks for your attention!!!
>>
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message