Configuration improvements
The following configuration improvements have been made.
Possibility to suppress repetitive Arjuna warnings about multiple last resources (#662314)
The allowMultipleLastResources setting in the cm6-standalone.xml and cm6-domain.xml configuration files causes warnings for every script execution that opens a second datasource connection. These warnings cluttered the logs unnecessarily.
You can silence the repetitive warnings by adding the following JVM startup parameter:
-DCoreEnvironmentBean.disableMultipleLastResourcesWarning=true
There will be one log entry about this setting during startup, and afterwards, the warning ARJUNA012141 will be logged only once.
Show initialized property only for dev systems (#667802)
The system property cmas-setup-manager, initialized is now displayed only on environments with the system flavor (system property cmas-core-server, system.flavour) set to dev. On other systems it will be hidden to prevent accidental usage of this potentially dangerous setting.
Stricter default password policy (#667829)
The default password policy in ConSol CM has been strengthened to meet modern security standards. The following minimum requirements now apply for all types of passwords:
- Minimum length: 12 characters
- Minimum complexity: at least one uppercase letter, one lowercase letter, one digit, and one special character
This translates to the following regular expression in the system property cmas-core-security, policy.password.pattern:
^(?=.*[A-Z])(?=.*[a-z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{12,}$
The label policy.password.pattern.violated has been updated with a textual description of the requirements:
Please choose a password with a higher complexity. By default passwords should have a minimum length of 12 and use at least one capital letter, one small letter, one number and one special character.
This password policy is only applied to new installations. If you want to implement it in an existing system, you need to modify the system property and label manually.