diff options
| author | Jan Lehnardt <jan@apache.org> | 2017-05-20 14:56:00 +0200 |
|---|---|---|
| committer | Jan Lehnardt <jan@apache.org> | 2017-05-20 14:56:00 +0200 |
| commit | 54623ce17e49ee9b5a6b69f0a8314c61b870f866 (patch) | |
| tree | 3a5a4053dfc6031799d4a6504b55d95ade4cc60b | |
| parent | e8d1e32ba3b4f5f3be0e06e5269b12d811f24d52 (diff) | |
| download | couchdb-54623ce17e49ee9b5a6b69f0a8314c61b870f866.tar.gz | |
fix cluster setup: use same admin pq salt on all nodes
| -rw-r--r-- | src/setup.erl | 23 | ||||
| -rw-r--r-- | src/setup_httpd.erl | 1 |
2 files changed, 12 insertions, 12 deletions
diff --git a/src/setup.erl b/src/setup.erl index b27c6c63d..6657073ce 100644 --- a/src/setup.erl +++ b/src/setup.erl @@ -85,11 +85,13 @@ get_remote_request_options(Options) -> enable_cluster_http(Options) -> % POST to nodeB/_setup RequestOptions = get_remote_request_options(Options), + AdminUsername = couch_util:get_value(username, Options), + AdminPasswordHash = config:get("admins", binary_to_list(AdminUsername)), Body = ?JSON_ENCODE({[ {<<"action">>, <<"enable_cluster">>}, - {<<"username">>, couch_util:get_value(username, Options)}, - {<<"password">>, couch_util:get_value(password, Options)}, + {<<"username">>, AdminUsername}, + {<<"password_hash">>, ?l2b(AdminPasswordHash)}, {<<"bind_address">>, couch_util:get_value(bind_address, Options)}, {<<"port">>, couch_util:get_value(port, Options)} ]}), @@ -119,7 +121,10 @@ enable_cluster_int(Options, no) -> CurrentAdmins = config:get("admins"), NewCredentials = { proplists:get_value(username, Options), - proplists:get_value(password, Options) + case proplists:get_value(password_hash, Options) of + undefined -> proplists:get_value(password, Options); + Pw -> Pw + end }, % if bind_address == 127.0.0.1 and no bind_address in req -> error @@ -132,7 +137,7 @@ enable_cluster_int(Options, no) -> {undefined, undefined} -> ok; {Username, Password} -> - maybe_set_admin(Username, Password) + set_admin(Username, Password) end, case NewBindAddress of @@ -154,14 +159,8 @@ enable_cluster_int(Options, no) -> couch_log:notice("Enable Cluster: ~p~n", [Options]). %cluster_state:set(enabled). -maybe_set_admin(Username, Password) -> - case couch_auth_cache:get_admin(Username) of - nil -> - HashedPassword = couch_passwords:hash_admin_password(Password), - config:set("admins", binary_to_list(Username), binary_to_list(HashedPassword)); - _Else -> - ok - end. +set_admin(Username, Password) -> + config:set("admins", binary_to_list(Username), binary_to_list(Password)). finish_cluster() -> diff --git a/src/setup_httpd.erl b/src/setup_httpd.erl index 006ed455b..910fcb78d 100644 --- a/src/setup_httpd.erl +++ b/src/setup_httpd.erl @@ -57,6 +57,7 @@ handle_action("enable_cluster", Setup) -> Options = get_options([ {username, <<"username">>}, {password, <<"password">>}, + {password_hash, <<"password_hash">>}, {bind_address, <<"bind_address">>}, {port, <<"port">>}, {remote_node, <<"remote_node">>}, |