From 22a5ad3acef0bfb8353dac64d4cbe0d52f6d2a07 Mon Sep 17 00:00:00 2001
From: jack <jack.su@pollex.com.tw>
Date: 星期五, 01 九月 2023 10:16:41 +0800
Subject: [PATCH] [UPDATE] 解決弱點Use of hard-coded cryptographic key , 把key移到設定檔
---
pamapi/src/main/resources/config/application-sit.yml | 23 ++++++++++++++++++-----
1 files changed, 18 insertions(+), 5 deletions(-)
diff --git a/pamapi/src/main/resources/config/application-sit.yml b/pamapi/src/main/resources/config/application-sit.yml
index a271702..75755f4 100644
--- a/pamapi/src/main/resources/config/application-sit.yml
+++ b/pamapi/src/main/resources/config/application-sit.yml
@@ -32,12 +32,9 @@
indent-output: true
datasource:
type: com.zaxxer.hikari.HikariDataSource
- url: jdbc:postgresql://VTWLIFELDPOS01:5006/omo?currentSchema=omo
- username: omo_svc
- password: omo_svc-100784c
hikari:
poolName: Hikari
- auto-commit: false
+ jndi-name: java:jboss/jdbc/pam
jpa:
database-platform: tech.jhipster.domain.util.FixedPostgreSQL10Dialect
liquibase:
@@ -114,7 +111,23 @@
mock-login: false
otp-web-service-url: https://vtwlifeopensyssit.pru.intranet.asia:443/pcalife-otp/ws/otpWebService?wsdl
otp-web-service-password: es20!%Pass
- otp-web-service-system-type: epos
+ otp-web-service-system-type: omo
e-service-login-url: https://eserviceuat.pcalife.com.tw/sso/chatbotValidate
e-service-login-func: ValidateUsrLogin
e-service-login-sys: epos
+ front-end-domain: 'https://vtwlifeopensyssit.pru.intranet.asia/pam/#'
+ sms:
+ send-notify-msg: true
+ url: https://vtwlifeopensysuat.pru.intranet.asia/MesgQueueMgmnt/rest/smsSendMsgResource
+ source-code: ePos
+ sender: POS
+ sms-type: '0017'
+ subject: '慦�像��'
+ email:
+ send-notify-msg: true
+ url: https://vtwlifeopensysuat.pru.intranet.asia/tsgw/mq/mqSendMail
+ function-id: epos
+ sender-email: noreply@pcalife.com.tw
+ method: 'PAM_EMAIL_SERVICE'
+ file-folder-path: /sfs_omo/AgentPhoto/
+ aes-key: PAMKEY1234567890
--
Gitblit v1.8.0