From c7b526dcea50694bb5f9171286641aad5563726e Mon Sep 17 00:00:00 2001
From: Temur Maisuradze <temur@grena.ge>
Date: Wed, 10 Feb 2021 16:37:44 +0400
Subject: [PATCH] change default admin password for thehive
---
group_vars/all/users.yml | 16 ++++++++--------
roles/thehive/tasks/adminuser.yml | 10 ++++++++++
roles/thehive/templates/adminpass.json | 1 +
3 files changed, 19 insertions(+), 8 deletions(-)
create mode 100644 roles/thehive/templates/adminpass.json
diff --git a/group_vars/all/users.yml b/group_vars/all/users.yml
index a2f125f..6710fa8 100644
--- a/group_vars/all/users.yml
+++ b/group_vars/all/users.yml
@@ -28,13 +28,13 @@ THEHIVE_KIBANA_USER:
THEHIVE_USERS:
- - kiril:
- username: "kiril"
- name: "Kiril"
- surname: "Kiroski"
+ - user1:
+ username: "user1"
+ name: "User1"
+ surname: "SOC"
roles: '["read", "write", "admin"]'
- - temur:
- username: "temur"
- name: "Temur"
- surname: "Maisuradze"
+ - user2:
+ username: "user2"
+ name: "User2"
+ surname: "SOC"
roles: '["read", "write", "admin"]'
diff --git a/roles/thehive/tasks/adminuser.yml b/roles/thehive/tasks/adminuser.yml
index 7b29bd0..6bc110a 100644
--- a/roles/thehive/tasks/adminuser.yml
+++ b/roles/thehive/tasks/adminuser.yml
@@ -28,3 +28,13 @@
- name: copy API key to local file
local_action: copy content="{{adminuserapikey}}" dest=secrets/tokens/thehive_secret_key
+- name: copy json file for admin pass
+ remote_user: root
+ template:
+ src: adminpass.json
+ dest: /tmp/adminpass.json
+
+- name: change password for admin user
+ shell: "curl -X POST http://127.0.0.1:9000/api/v1/user/{{ adminuserid }}/password/set -b /tmp/cookie.txt -c /tmp/cookie.txt -H 'Content-Type: application/json' -d @/tmp/adminpass.json"
+ args:
+ warn: false
diff --git a/roles/thehive/templates/adminpass.json b/roles/thehive/templates/adminpass.json
new file mode 100644
index 0000000..96292db
--- /dev/null
+++ b/roles/thehive/templates/adminpass.json
@@ -0,0 +1 @@
+{"password":"{{lookup('password', '{{playbook_dir}}/secrets/passwords/thehive_adminpass')}}"}
--
GitLab