glenn
/
asteroid
mirror of https://github.com/glenneth1/asteroid.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

security: Remove hardcoded admin credentials from login page 

Removed the display of default admin username and password from the
login page template. This information should not be publicly visible
as it poses a security risk in production environments.

Administrators should use secure credential management practices
and change default passwords during initial setup.
This commit is contained in:
glenneth 2025-11-04 06:36:42 +03:00 committed by Brian O'Reilly
parent 043c0d8610
commit c58c8a255c
1 changed files with 0 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
template/login.ctml
View File

@ -37,11 +37,6 @@
<button type="submit" class="btn btn-primary" style="width: 100%;">LOGIN</button> <button type="submit" class="btn btn-primary" style="width: 100%;">LOGIN</button>
</div> </div>
</form> </form>
<div class="panel" style="margin-top: 20px; text-align: center;">
<strong style="color: #ff6600;">Default Admin Credentials:</strong><br>
Username: <br><code style="color: #00ff00;">admin</code><br>
Password: <br><code style="color: #00ff00;">asteroid123</code>
</div>
</div> </div>
</div> </div>
</div> </div>