Merge pull request #519 from singuliere/wip-create-user

randomly generated passwords must obey some constraints
2020-12-11 10:50:25 -03:00 · 2020-12-11 10:50:25 -03:00 · a97673c6b2
commit a97673c6b2
parent fc67b96b63 0440e5dce9
1 changed files with 9 additions and 2 deletions
--- a/roles/wazuh/ansible-wazuh-manager/files/create_user.py
+++ b/roles/wazuh/ansible-wazuh-manager/files/create_user.py
@ -69,13 +69,20 @@ if __name__ == "__main__":
    # set a random password for all other users
    for name, id in initial_users.items():
        if name != username:
+            specials = "@$!%*?&-_"
            random_pass = "".join(
+                [
+                    random.choice(string.ascii_uppercase),
+                    random.choice(string.ascii_lowercase),
+                    random.choice(string.digits),
+                    random.choice(specials),
+                ] +
                random.choices(
                    string.ascii_uppercase
                    + string.ascii_lowercase
                    + string.digits
-                    + "@$!%*?&-_",
-                    k=16,
+                    + specials,
+                    k=14,
                )
            )
            update_user(