chore: 移除硬编码的 JWT_SECRET 和密码逻辑

Author: lexburner

deploy/docker/.env.example

@@ -17,20 +17,22 @@ REDIS_IMAGE=higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/redis-stack-ser
 SANDBOX_IMAGE=opensource-registry.cn-hangzhou.cr.aliyuncs.com/higress-group/sandbox:latest
 
 # ========== 数据库密码 ==========
-# 必须固定，否则重装时本地数据与新密码不匹配
-MYSQL_ROOT_PASSWORD=himarket_root_2024
-MYSQL_PASSWORD=himarket_app_2024
+# 首次安装时由 install.sh 自动生成随机值，升级时沿用已有值
+# 如需自定义，取消注释并填写
+# MYSQL_ROOT_PASSWORD=
+# MYSQL_PASSWORD=
 
 # ========== 服务凭证 ==========
-NACOS_ADMIN_PASSWORD=nacos
-HIGRESS_USERNAME=admin
-HIGRESS_PASSWORD=admin
+# 首次安装时由 install.sh 自动生成随机值，升级时沿用已有值
+# NACOS_ADMIN_PASSWORD=
+# HIGRESS_USERNAME=admin
+# HIGRESS_PASSWORD=
 
 # ========== 默认用户 ==========
 ADMIN_USERNAME=admin
-ADMIN_PASSWORD=admin
+# ADMIN_PASSWORD=
 FRONT_USERNAME=user
-FRONT_PASSWORD=123456
+# FRONT_PASSWORD=
 
 # ========== AI 模型配置（可选）==========
 SKIP_AI_MODEL_INIT=true

deploy/docker/install.sh

@@ -270,6 +270,26 @@ prompt_optional() {
     eval "export ${var_name}='${value}'"
 }
 
+# ── generate_password — 生成随机安全密码 ─────────────────────────────────────
+generate_password() {
+    local len="${1:-16}"
+    openssl rand -base64 48 | tr -d '/+=\n' | head -c "${len}"
+}
+
+# ── ensure_secrets — 首次安装时为空密码字段生成随机值 ─────────────────────────
+# 在 load_config() 之后调用。如果 env 文件已加载了密码，则不会覆盖。
+ensure_secrets() {
+    : "${MYSQL_ROOT_PASSWORD:=$(generate_password)}"
+    : "${MYSQL_PASSWORD:=$(generate_password)}"
+    : "${JWT_SECRET:=$(openssl rand -base64 32)}"
+    : "${NACOS_ADMIN_PASSWORD:=$(generate_password)}"
+    : "${HIGRESS_PASSWORD:=$(generate_password)}"
+    : "${ADMIN_PASSWORD:=$(generate_password)}"
+    : "${FRONT_PASSWORD:=$(generate_password)}"
+    export MYSQL_ROOT_PASSWORD MYSQL_PASSWORD JWT_SECRET \
+           NACOS_ADMIN_PASSWORD HIGRESS_PASSWORD ADMIN_PASSWORD FRONT_PASSWORD
+}
+
 # =============================================================================
 # Docker 工具函数
 # =============================================================================
@@ -567,6 +587,11 @@ interactive_config() {
         DEPLOY_MODE="install"
     fi
 
+    # 新安装/重新安装时，为空的密码字段生成随机值
+    if [[ "${DEPLOY_MODE}" != "upgrade" ]]; then
+        ensure_secrets
+    fi
+
     # ─── 镜像配置 ───
     log ""
     log "$(msg section.image)"
@@ -577,38 +602,32 @@ interactive_config() {
     prompt NACOS_IMAGE "Nacos image" "nacos-registry.cn-hangzhou.cr.aliyuncs.com/nacos/nacos-server:v3.2.0-BETA"
     prompt HIGRESS_IMAGE "Higress image" "higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/all-in-one:latest"
 
-    # ─── 数据库密码 ───
+    # ─── 数据库密码（首次安装时已自动生成随机值） ───
     log ""
     log "$(msg section.db)"
-    prompt MYSQL_ROOT_PASSWORD "MySQL root password" "himarket_root_2024"
-    prompt MYSQL_PASSWORD "MySQL app password" "himarket_app_2024"
+    prompt MYSQL_ROOT_PASSWORD "MySQL root password" "${MYSQL_ROOT_PASSWORD:-}"
+    prompt MYSQL_PASSWORD "MySQL app password" "${MYSQL_PASSWORD:-}"
     # 内置 MySQL：DB_* 始终指向容器内 MySQL
     export DB_HOST="mysql"
     export DB_PORT="3306"
     export DB_NAME="${MYSQL_DATABASE:-portal_db}"
     export DB_USERNAME="${MYSQL_USER:-portal_user}"
     export DB_PASSWORD="${MYSQL_PASSWORD}"
 
-    # ─── JWT Secret（自动生成随机值） ───
-    if [[ -z "${JWT_SECRET:-}" ]]; then
-        JWT_SECRET="$(openssl rand -base64 32)"
-    fi
-    export JWT_SECRET
-
-    # ─── 服务凭证 ───
+    # ─── 服务凭证（首次安装时已自动生成随机值） ───
     log ""
     log "$(msg section.credential)"
-    prompt NACOS_ADMIN_PASSWORD "Nacos admin password" "nacos"
+    prompt NACOS_ADMIN_PASSWORD "Nacos admin password" "${NACOS_ADMIN_PASSWORD:-}"
     prompt HIGRESS_USERNAME "Higress console username" "admin"
-    prompt HIGRESS_PASSWORD "Higress console password" "admin"
+    prompt HIGRESS_PASSWORD "Higress console password" "${HIGRESS_PASSWORD:-}"
 
-    # ─── 默认用户 ───
+    # ─── 默认用户（首次安装时密码已自动生成随机值） ───
     log ""
     log "$(msg section.user)"
     prompt ADMIN_USERNAME "Admin username" "admin"
-    prompt ADMIN_PASSWORD "Admin password" "admin"
+    prompt ADMIN_PASSWORD "Admin password" "${ADMIN_PASSWORD:-}"
     prompt FRONT_USERNAME "Developer username" "user"
-    prompt FRONT_PASSWORD "Developer password" "123456"
+    prompt FRONT_PASSWORD "Developer password" "${FRONT_PASSWORD:-}"
 
     # ─── AI 模型配置（可选，支持多个）───
     log ""

deploy/helm/.env.example

@@ -23,20 +23,22 @@ HIGRESS_REPO_URL=https://higress.cn/helm-charts
 HIGRESS_CHART_REF=higress.io/higress
 
 # ========== 数据库密码 ==========
-# 必须固定，否则重装时 PVC 旧数据与新密码不匹配
-MYSQL_ROOT_PASSWORD=himarket_root_2024
-MYSQL_PASSWORD=himarket_app_2024
+# 首次安装时由 install.sh 自动生成随机值，升级时沿用已有值
+# 如需自定义，取消注释并填写
+# MYSQL_ROOT_PASSWORD=
+# MYSQL_PASSWORD=
 
 # ========== 服务凭证 ==========
-NACOS_ADMIN_PASSWORD=nacos
-HIGRESS_USERNAME=admin
-HIGRESS_PASSWORD=admin
+# 首次安装时由 install.sh 自动生成随机值，升级时沿用已有值
+# NACOS_ADMIN_PASSWORD=
+# HIGRESS_USERNAME=admin
+# HIGRESS_PASSWORD=
 
 # ========== 默认用户 ==========
 ADMIN_USERNAME=admin
-ADMIN_PASSWORD=admin
+# ADMIN_PASSWORD=
 FRONT_USERNAME=user
-FRONT_PASSWORD=123456
+# FRONT_PASSWORD=
 
 # ========== 存储配置 ==========
 MYSQL_STORAGE_CLASS=alicloud-disk-essd

deploy/helm/install.sh

@@ -313,6 +313,26 @@ prompt_optional() {
     eval "export ${var_name}='${value}'"
 }
 
+# ── generate_password — 生成随机安全密码 ─────────────────────────────────────
+generate_password() {
+    local len="${1:-16}"
+    openssl rand -base64 48 | tr -d '/+=\n' | head -c "${len}"
+}
+
+# ── ensure_secrets — 首次安装时为空密码字段生成随机值 ─────────────────────────
+# 在 load_config() 之后调用。如果 env 文件已加载了密码，则不会覆盖。
+ensure_secrets() {
+    : "${MYSQL_ROOT_PASSWORD:=$(generate_password)}"
+    : "${MYSQL_PASSWORD:=$(generate_password)}"
+    : "${JWT_SECRET:=$(openssl rand -base64 32)}"
+    : "${NACOS_ADMIN_PASSWORD:=$(generate_password)}"
+    : "${HIGRESS_PASSWORD:=$(generate_password)}"
+    : "${ADMIN_PASSWORD:=$(generate_password)}"
+    : "${FRONT_PASSWORD:=$(generate_password)}"
+    export MYSQL_ROOT_PASSWORD MYSQL_PASSWORD JWT_SECRET \
+           NACOS_ADMIN_PASSWORD HIGRESS_PASSWORD ADMIN_PASSWORD FRONT_PASSWORD
+}
+
 # =============================================================================
 # Kubernetes / Helm 工具函数
 # =============================================================================
@@ -741,7 +761,8 @@ interactive_config() {
         prompt HIMARKET_MYSQL_IMAGE_TAG "MySQL image tag" "${HIMARKET_MYSQL_IMAGE_TAG:-latest}"
         prompt NACOS_VERSION "Nacos version" "${NACOS_VERSION:-v3.2.0-BETA}"
 
-        # 其他配置沿用已有值（从配置文件加载或回退默认值）
+        # 其他配置沿用已有值（从配置文件加载）
+        # 注意：回退默认值保留旧版硬编码值，仅用于兼容 env 文件缺失的已有部署
         NAMESPACE="${NAMESPACE:-himarket}"
         HIMARKET_HUB="${HIMARKET_HUB:-opensource-registry.cn-hangzhou.cr.aliyuncs.com/higress-group}"
         NACOS_IMAGE_REGISTRY="${NACOS_IMAGE_REGISTRY:-nacos-registry.cn-hangzhou.cr.aliyuncs.com}"
@@ -774,6 +795,8 @@ interactive_config() {
         done
     else
     # ─── 分组交互式提示（全新安装 / 重新安装）───
+    ensure_secrets
+
     log ""
     log "$(msg section.basic)"
     prompt NAMESPACE "Kubernetes namespace" "himarket"
@@ -787,28 +810,26 @@ interactive_config() {
     prompt NACOS_IMAGE_REGISTRY "Nacos image registry" "nacos-registry.cn-hangzhou.cr.aliyuncs.com"
     prompt NACOS_IMAGE_REPOSITORY "Nacos image repository" "nacos/nacos-server"
 
+    # ─── 数据库密码（首次安装时已自动生成随机值） ───
     log ""
     log "$(msg section.db)"
-    prompt MYSQL_ROOT_PASSWORD "MySQL root password" "himarket_root_2024"
-    prompt MYSQL_PASSWORD "MySQL app password" "himarket_app_2024"
-
-    # JWT Secret: 自动生成随机值（无需用户交互）
-    if [[ -z "${JWT_SECRET:-}" ]]; then
-        JWT_SECRET="$(openssl rand -base64 32)"
-    fi
+    prompt MYSQL_ROOT_PASSWORD "MySQL root password" "${MYSQL_ROOT_PASSWORD:-}"
+    prompt MYSQL_PASSWORD "MySQL app password" "${MYSQL_PASSWORD:-}"
 
+    # ─── 服务凭证（首次安装时已自动生成随机值） ───
     log ""
     log "$(msg section.credential)"
-    prompt NACOS_ADMIN_PASSWORD "Nacos admin password" "nacos"
+    prompt NACOS_ADMIN_PASSWORD "Nacos admin password" "${NACOS_ADMIN_PASSWORD:-}"
     prompt HIGRESS_USERNAME "Higress console username" "admin"
-    prompt HIGRESS_PASSWORD "Higress console password" "admin"
+    prompt HIGRESS_PASSWORD "Higress console password" "${HIGRESS_PASSWORD:-}"
 
+    # ─── 默认用户（首次安装时密码已自动生成随机值） ───
     log ""
     log "$(msg section.user)"
     prompt ADMIN_USERNAME "Admin username" "admin"
-    prompt ADMIN_PASSWORD "Admin password" "admin"
+    prompt ADMIN_PASSWORD "Admin password" "${ADMIN_PASSWORD:-}"
     prompt FRONT_USERNAME "Developer username" "user"
-    prompt FRONT_PASSWORD "Developer password" "123456"
+    prompt FRONT_PASSWORD "Developer password" "${FRONT_PASSWORD:-}"
 
     log ""
     log "$(msg section.storage)"