user security best practice of having no default passwords.

2024-07-26 20:57:04 +02:00 · 2024-07-26 20:57:04 +02:00 · 37bef8814c
commit 37bef8814c
parent d02b7eade3
1 changed files with 14 additions and 5 deletions
--- a/cmd/converge/converge.go
+++ b/cmd/converge/converge.go
@ -6,10 +6,12 @@ import (
 	"converge/pkg/websocketutil"
 	"fmt"
 	"log"
+	"math/rand"
 	"net"
 	"net/http"
 	"os"
 	"regexp"
+	"strconv"
 	"strings"
 )

@ -71,16 +73,23 @@ func main() {
 		printHelp("")
 	}

+	userPassword := comms.UserPassword{
+		Username: strconv.Itoa(rand.Int()),
+		Password: strconv.Itoa(rand.Int()),
+	}
+
 	username, ok := os.LookupEnv("CONVERGE_USERNAME")
-	if !ok {
-		username = "abc"
+	if ok {
+		userPassword.Username = username
 	}

 	password, ok := os.LookupEnv("CONVERGE_PASSWORD")
-	if !ok {
-		password = "123"
+	if ok {
+		userPassword.Password = password
 	}

+	log.Printf("Using username '%s' and password '%s'", userPassword.Username, userPassword.Password)
+
 	admin := converge.NewAdmin()
 	registrationService := websocketutil.WebSocketService{
 		Handler: func(w http.ResponseWriter, r *http.Request, conn net.Conn) {
@ -91,7 +100,7 @@ func main() {
 			}
 			log.Printf("Got registration connection: '%s'\n", publicId)
 			err = admin.Register(publicId, conn,
-				comms.UserPassword{Username: username, Password: password})
+				userPassword)
 			if err != nil {
 				log.Printf("Error %v\n", err)
 			}