Community Health Toolkit

Updating default login credentials

I’m having trouble updating the default admin role login credentials(medic/password).
This is to avoid unintended admin logins by those familiar with the default CHT credentials

Describe the Bug
After updating the user password while logged in using the default credentials, the update seems successful but subsequent logins using the new password fail.

How To Reproduce The Issue
List steps for someone trying to reproduce the behavior. For example:

  1. Log in using the default credentials (medic/password)
  2. Go to the app menu and select User settings
  3. Click on ‘Update password’
  4. Set a new password

Expected Behavior
I expect to log in using the newly set password on my next login

Environment

  • Instance: self hosted installation
  • Browser: Google Chrome
  • Client platform: Linux - Ubuntu 18.04
  • Docker version 20.10.3, docker-compose version 1.28.2
  • App:webapp
  • Version: 3.9.0

Additional Context
I’d like advice on how to either change the default credentials password or disable the default account

1 Like

I’ve just reproduced this on my machine. The dialog reports success the HTTP request returns 200, and the API log reports success, but alas the change doesn’t stick! I’ve raised an issue to either fix this, or let the user know how to manually change the admin password.

I think the workaround is to change the admin password by following the CouchDB documentation which may need root access to the instance.