dhis2-devs team mailing list archive

Thread
Date

Re: Changing admin password to default

To: Alan Ivey <aivey@xxxxxxxxxxxxxx>
From: Jason Pickering <jason.p.pickering@xxxxxxxxx>
Date: Tue, 1 Sep 2015 08:37:17 +0200
Cc: dhis2-users <dhis2-users@xxxxxxxxxxxxxxxxxxx>, gerald thomas <gerald17006@xxxxxxxxx>, dhis2-devs <dhis2-devs@xxxxxxxxxxxxxxxxxxx>
In-reply-to: <CALvX04Tq79vdhKtc=3AOys7j3xgG1Oqy+1G1U9tD5RZ3xzWsYg@mail.gmail.com>

@Alan, nice. ; )

The only other things to be sure about are

1) The admin user actually exists.
2) The admin user is not disabled.
3) The admin user is actually a super user.

If you have had a situation where someone else was in control over the
server, they may have (smartly) disabled or completely removed the "admin"
user. Otherwise, you may need to develop a more comprehensive script to
inject a user into the database if the "admin" user does not exist at all.

Regards,
Jason




On Mon, Aug 31, 2015 at 11:21 PM, Alan Ivey <aivey@xxxxxxxxxxxxxx> wrote:

> Hi Gerald,
>
> You can create a password hash with Python and the Bcrypt library. Run
> this single command in your terminal to get a hash for *passwordGoesHere*:
>
> $ python -c 'import bcrypt; hash = bcrypt.hashpw("*passwordGoesHere*",
> bcrypt.gensalt(rounds=10, prefix=b"2a")); print(hash);'
>
> You can insert the resulting hash directly into the database for the admin
> user.
>
> Note: If you do not have the Bcrypt library in your Python installation,
> you should add it with pip. The following will install all prerequisites on
> a CentOS 6 system:
>
> $ yum install gcc libffi-devel python-devel python-pip
> $ pip install --user bcrypt
>
> Before attempting to change the admin user password in the database, visit
> the front page of a new installation to have DHIS2 generate data in the
> database for the admin user (you can do something as simple as $ curl -sL
> http://localhost:8080/). Then, you can enter the following query into the
> Postgres CLI with the DHIS2 database in use:
>
> UPDATE USERS SET password = '001122hashgoeshere221100' WHERE username =
> 'admin';
>
> Restart the application server (Tomcat) and then you should be able to log
> in with your new password *passwordGoesHere* or what you changed it to.
>
> Regards,
> Alan
>
> On Mon, Aug 31, 2015 at 11:02 AM, gerald thomas <gerald17006@xxxxxxxxx>
> wrote:
>
>> Dear all,
>> I am setting up a training server for staff and i am using dhis2 live
>> to achieve the task but i am using one of our database rather than the
>> default database. I had already used the following query to change the
>> admin password:
>>
>> UPDATE users set password = '48e8f1207baef1ef7fe478a57d19f2e5'
>> where username = 'admin';
>>
>> What am i doing which is wrong and why i can't login with username:
>> admin password: district
>>
>> --
>> Regards,
>>
>> Gerald
>>
>> _______________________________________________
>> Mailing list: https://launchpad.net/~dhis2-devs
>> Post to     : dhis2-devs@xxxxxxxxxxxxxxxxxxx
>> Unsubscribe : https://launchpad.net/~dhis2-devs
>> More help   : https://help.launchpad.net/ListHelp
>>
>
>
> _______________________________________________
> Mailing list: https://launchpad.net/~dhis2-devs
> Post to     : dhis2-devs@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~dhis2-devs
> More help   : https://help.launchpad.net/ListHelp
>
>


-- 
Jason P. Pickering
email: jason.p.pickering@xxxxxxxxx
tel:+46764147049

References

Changing admin password to default
From: gerald thomas, 2015-08-31
Re: Changing admin password to default
From: Alan Ivey, 2015-08-31