From 22a5ad3acef0bfb8353dac64d4cbe0d52f6d2a07 Mon Sep 17 00:00:00 2001
From: jack <jack.su@pollex.com.tw>
Date: 星期五, 01 九月 2023 10:16:41 +0800
Subject: [PATCH] [UPDATE] 解決弱點Use of hard-coded cryptographic key , 把key移到設定檔

---
 pamapi/src/main/resources/config/application-uat.yml |   13 ++++++-------
 1 files changed, 6 insertions(+), 7 deletions(-)

diff --git a/pamapi/src/main/resources/config/application-uat.yml b/pamapi/src/main/resources/config/application-uat.yml
index 28d8c16..03875c1 100644
--- a/pamapi/src/main/resources/config/application-uat.yml
+++ b/pamapi/src/main/resources/config/application-uat.yml
@@ -32,11 +32,9 @@
       indent-output: true
   datasource:
     type: com.zaxxer.hikari.HikariDataSource
-    url: jdbc:postgresql://VTWLIFELDPOS01:5006/omo?currentSchema=omo
-    username: omo_svc
-    password: omo_svc-100784c
     hikari:
       poolName: Hikari
+    jndi-name: java:jboss/jdbc/pam
   jpa:
     database-platform: tech.jhipster.domain.util.FixedPostgreSQL10Dialect
   liquibase:
@@ -113,11 +111,11 @@
   mock-login: false
   otp-web-service-url: https://vtwlifeopensysuat.pru.intranet.asia/pcalife-otp/ws/otpWebService?wsdl
   otp-web-service-password: es20!%Pass
-  otp-web-service-system-type: epos
-  e-service-login-url: https://eserviceuat.pcalife.com.tw/sso/chatbotValidate
+  otp-web-service-system-type: omo
+  e-service-login-url: https://onlineuat.pcalife.com.tw/sso/chatbotValidate
   e-service-login-func: ValidateUsrLogin
   e-service-login-sys: epos
-  front-end-domain: https://vtwlifeopensysuat.pru.intranet.asia/pam
+  front-end-domain: 'https://onlineuat.pcalife.com.tw/pam/#'
   sms:
     send-notify-msg: true
     url: https://vtwlifeopensysuat.pru.intranet.asia/MesgQueueMgmnt/rest/smsSendMsgResource
@@ -131,4 +129,5 @@
     function-id: epos
     sender-email: noreply@pcalife.com.tw
     method: 'PAM_EMAIL_SERVICE'
-  file-folder-path: /sfs_omo/vtwlifewuftp66/sensitivedata4ap$/OMO
+  file-folder-path: /sfs_omo/AgentPhoto/
+  aes-key: PAMKEY1234567890

--
Gitblit v1.8.0