Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 rengith george (RENGITHAVG)
Royal Bank Of Canada

Royal Bank Of Canada
CA
RENGITHAVG Member since 2010 4 posts
Royal Bank Of Canada
Posted: Mar 3, 2021
Last activity: Mar 3, 2021
Posted: 3 Mar 2021 11:54 EST
Last activity: 3 Mar 2021 11:56 EST
Closed

Pega Docker Container image based on tomcat 9 / openjdk 11 is exposing DB password in context.xml

The secrets of pega DB are expected to be in /opt/pega/secrets directory. From there the context.xml is getting dockerized as per the docker-pega-web-ready implementation see line 216 in https://github.com/pegasystems/docker-pega-web-ready/blob/master/scripts/docker-entrypoint.sh /bin/dockerize -template ${CATALINA_HOME}/conf/context.xml.tmpl:${CATALINA_HOME}/conf/context.xml We want the final context.xml password to be replaced with cleartext. We are not able to higher environment due to this issue and struck.

To see attachments, please log in.
Pega Platform 8.5.2
Installation and Deployment
Financial Services

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice