Document how vendors can change the default password

Value

Vendors need a way to change the default password. Otherwise, there is a high risk of unintended remote access.

Description

We currently have a default 'oniro' user. Vendors should have a (documented) way to change the password of this user. We decided to currently not to support changing the user name until we have advanced in the provisioning tools and/or set up the user-id mapping.

In scope

Allow changing password by a vendor (by a meta-layer or local.conf). Document the way to do it.

Out of Scope

Changing the password

Acceptance Criteria

Default password change tested as working and documented.

Applicable Market Segments

• All

Applicable Personas

• Application Developer
• Product Integrator
• System Administrator
• Software Quality Auditor

added to epic &130 (closed)

changed milestone to %goofy beta

added teamsecurity label

set weight to 2

Take into account the containers support !204 (ffeb05bb)

changed iteration to Oniro Core Iterations Aug 1, 2022 - Aug 31, 2022

added Doing label

assigned to @ghassaneben

changed title from Document how vendors can change/add users to Document how vendors can change the default password

changed the description

Scope change following the discussion on Aug 17th with @agherzan @zyga @idlethread : we need to be able to change the default password. However, changing the default user when we do not have stable user-ids and a way to set up home directories is too risky. We postpone this after the provisioning is better defined.

changed iteration to Oniro Core Iterations Sep 1, 2022 - Sep 30, 2022

assigned to @mrybczyn

unassigned @ghassaneben

changed milestone to %goofy general availability

MR here !365 (merged)

Merged so closing this issue.

closed