Question

22
Views
Close popover
rengith george (RENGITHAVG)
Royal Bank Of Canada

Royal Bank Of Canada
CA
RENGITHAVG Member since 2010 3 posts
Royal Bank Of Canada
Posted: March 3, 2021
Last activity: March 3, 2021

Pega Docker Container image based on tomcat 9 / openjdk 11 is exposing DB password in context.xml

The secrets of pega DB are expected to be in /opt/pega/secrets directory. From there the context.xml is getting dockerized as per the docker-pega-web-ready implementation see line 216 in https://github.com/pegasystems/docker-pega-web-ready/blob/master/scripts/docker-entrypoint.sh /bin/dockerize -template ${CATALINA_HOME}/conf/context.xml.tmpl:${CATALINA_HOME}/conf/context.xml We want the final context.xml password to be replaced with cleartext. We are not able to higher environment due to this issue and struck.

Pega Platform 8.5.2 System Administration Installation and Deployment Financial Services