Skip to content

Default admin token (dev-admin-token) isn't flagged at startup #197

Description

@LiorFink00

The management/UI admin gate (#20) is fail-closed: THUMPER_ADMIN_TOKEN has no code default, so unset = API disabled (503).

But .env.example ships THUMPER_ADMIN_TOKEN=dev-admin-token, and config.insecure_default_tokens() only checks the enroll/install defaults — not admin. So a deploy that copies .env.example runs with a publicly-known admin token and no startup warning, silently re-opening the management API to anyone who knows the obvious value.

Fix

Recognize dev-admin-token as a known-insecure value in insecure_default_tokens() so it is flagged loudly at startup, exactly like the enroll/install dev defaults. Keep the fail-closed behavior (an unset token still disables the API — this is not a new code default).

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions