Password Migration
Notes:
This procedure is to be done for old instances of OpenELIS that are using an outdated method of storing passwords. To check if the old method is used, follow these steps:
- Connect to running database
- Query login_user table
SELECT * FROM clinlims.login_user;
- Check the password column values
If all passwords start with something similar to $2a$12$ then the passwords have been migrated, if not, then this procedure must be completed for OE2 to function.
It is recommended for all users to change their password after this tool is run. This is because the old method of storing passwords was insecure so it is possible that an attacker compromised their old password.
Migrating Passwords
Install Python tools on computer with connection to DB
- Run the following commands
sudo apt update
wget https://bootstrap.pypa.io/pip/2.7/get-pip.py
python2 get-pip.py
sudo apt install libpq-dev python-dev
python2 -m pip install pycrypto
python2 -m pip install psycopg2
python2 -m pip install bcrypt
Run the Password Migration tool
- Download the Password Migration tool and unpack it
wget https://github.com/I-TECH-UW/Password-Migrator/archive/master.tar.gz
tar -xvzf master.tar.gz
- Run the tool and follow instructions
python2 Password-Migrator-master/migrator/migrate.py
- Provide DB connection info
- Confirm that no errors occurred