How to change default MaxScale credentials for GUI - maxscale

MaxScale from v2.5 has a nice web Gui based on REST API. However it has default credentials admin:mariadb. Does any one know how to change this?
I've searched around in Mariadb Docs, but found the only options you can change is to add ssl cert's for the web gui to encrypt passing passwords and switch off\on the auth at all. Any ideas?

You can use the maxctrl command line client to manage users. The MaxScale administration tutorial has a section on how to create new users and to remove old ones.
The REST API tutorial also has a section on how to harden it for a more secure installation.

Related

Token has been expired or revoked Again and Again in WordPress

The “WP Mail SMTP” revoked the connection from my G-mail account again and again.
No password changed.I missed my order notification again and again.Please tell me why it is happening.
WordPress Version:- 5.6
PHP Version:-
WP Mail SMTP Version:- 2.6.0
Web Server:- Apache
PHP version:- 7.3.5
License key type:- lite
To solve it I accessed WP Mail SMTP settings on WP Admin Dashboard and, in the Authorization, pressed "Removed the Connection"
And then allowed the connection again ("Allow plugin to send emails using your Google account")
And that redirected to the following screen (after login), and had to allow
Note: One needs to be in the Google Account that one configured the API (see here how to configure WP Mail SMTP for Google Workspace/Gmail Mailer)
Token has been expired or revoked, but it is hard to know exactly what is the problem.
My guess is that it could be happening for a variety of reasons, such as resetting the password of the account one is using.
A WPMail SMTP creator wrote (here) the following:
Hi everyone,
it looks like this is happening to more and more users, but we don’t
know what the reason behind this account disconnect is. We have a lot
of testing sites set up, and we never experienced this issue. I just
rechecked my testing sites.
One of the main things that could cause this issue is if your
Google/Gmail API app is in “Testing” mode. Could you please check if
the google API project is in the “Production” mode by going to the
Google API console, opening the project for our plugin integration,
then go to “OAuth Consent Screen” and check the “Publishing status”.
More info can be found in this screenshot. It should say “In
production”.
If that’s not the reason, then we have to go over all the Gmail API
project options together and see what the differences are. I think it
has to be something on Google’s side since they are the ones that
invalidate the token, not us.
And to answer bst7’s questions: The Google API app is created by you,
to be used just by you, even though on the free Gmail accounts you
have the app set to “External use” (no other option is available), but
nobody else will use this app apart from you, since you are the only
one that knows the project credentials and have logged into it from
your secured WP admin dashboard.
Our plugin requires top-level permission because that’s the best way
to future-proof our plugin development. If we were to improve our
plugin and would have required only the minimal permission level, upon
the plugin update, your connection would be invalidated and the newly
added plugin functionality would not work. For example, we added the
support for aliases a few versions ago and if we didn’t have the
top-level permission, after the update all users would have to reset
the connection manually in order for the Gmail mailer to work properly
again. It’s just a way to make sure we can keep improving our plugin
without any issues for our users.
However, in my case the Publishing status is "In production" and the problem also happened.

Authentication from wordpress REST API

After searching form wordpress documentation and google, i haven't find any proper way to achieve my goal : able to login to wordpress from custom third party application built with nodeJs.
The steps is check if couple username / password is administrator and process tasks on my external app.
Anyone has already used the REST API of wordpress to auth user? WITHOUT INSTALLING ANY PLUGIN , i just want to get response from server if my couple username/ password is true and is administrator, i know i can asks the database to check but i want to pass throught the built-in wp rest api.
Thank you.
The simple answer is no, and here is why
While cookie authentication is the only authentication mechanism
available natively within WordPress, plugins may be added to support
alternative modes of authentication that will work from remote
applications. Some example plugins are OAuth 1.0a Server, Application
Passwords, and JSON Web Tokens.
Source: Wordpress Official Handbook
However there is a painful and insecure way of doing it with plain HTTP authentication which is not recommended.
Recommended way of doing this securely is to get WordPress JWT or oAuth Server extension and deal with standard authentication process which is more convenient and secure, WordPress already lists them which are referenced in the quote. Hope this helps!

Configuring Kaa (0.10.0) without an e-mail server

Is there anyway to configure Kaa without an e-mail service at first? I don't want to configure that yet, but want to set up my test users, etc.
Anywhere in the conf/ folder or do I have to muck with the Java?
You can register a user using the Kaa server REST API.
You're interested in the following methods:
POST /api/auth/createKaaAdmin
POST /api/admins/{tenantId}
The other possible solution is to use your existing email account.

openid connect for drupal tutorial

Here is the senario. I am trying to create a drupal 7 site that will serve as my openid connect server for another site that is being created in python. We want to have single sign on for the python site so that user will be synchronized between both the drupal site and the python site.
Question:
Does anyone know of a step by step tutorial (or can you tell me how) to setup a drupal site to do this?
I don't know anything about drupal and I am having a very difficult time trying to get the openid connect module properly configured to allow sso. I think I have successfully installed the openid connect, openid connect sso, and oauth 2 modules as well as the oauth2_server_php library.
Where I am stuck:
when I go into the oauth2 settings, the "Use openid connect" check field is not present. According to one tutorial I have seen, it's supposed to be there.
When you configure openid connect, the 3 url endpoints (Authorization endpoint, Token endpoint and UserInfo endpoint) are a mystery to me and I don't know what to put in them. Right now my drupal server is running on my local host webserver. "http://localhost/drupal"
So you are basically trying to implement the OpenID connect protocol and then use that from a python based website. I guess you already have googled that and trying to implement your own.
And the second portion is how will your python website use this newly created openid connect implementation.
We already have an openid connect implementation and also a step by step guide for sites wanting to use it.
If you want to consider an alternate, We have a step by step guide with sample code in Java as well as PHP on how to use miniOrange as your OpenID connect provider, here.
SO this guide will take care of your "another site in python".
Python samples are being added as we speak so stay tuned or ping me if you are interested.

Symfony2 can a web application be like a computer client?

I'm developping an application that I should give to a person only to test its functionality, and I don't want him to have the code.
I also do not want to host the application and give him a remote access.
what should I do?
You could use ioncube to encode your sources before passing them on to your client.
You can save your client the trouble of setting up a server by hosting the app yourself and using .htaccess to password protect the app and/or set up an IP restriction.

Resources