Merge pull request #3047 from nscuro/api-key-prefix

Add documentation for API key prefix, and set default to `odt_`
DependencyTrack · Sep 23, 2023 · 593ab00 · 593ab00
2 parents bad108d + 3ade7d4
commit 593ab00
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 25 deletions.
diff --git a/docs/_docs/getting-started/configuration.md b/docs/_docs/getting-started/configuration.md
@@ -68,6 +68,12 @@ alpine.data.directory=~/.dependency-track
 # Default is "<alpine.data.directory>/keys/secret.key".
 # alpine.secret.key.path=/var/run/secrets/secret.key
 
+# Optional
+# Defines the prefix to be used for API keys. A maximum prefix length of 251
+# characters is supported.
+# The prefix may also be left empty.
+alpine.api.key.prefix=odt_
+
 # Required
 # Defines the interval (in seconds) to log general heath information. If value
 # equals 0, watchdog logging will be disabled.
@@ -162,18 +168,6 @@ alpine.database.pool.max.lifetime=600000
 # DO NOT CHANGE UNLESS THERE IS A GOOD REASON TO.
 # alpine.datanucleus.cache.level2.type=
 
-# Optional
-# When authentication is enforced, API keys are required for automation, and
-# the user interface will prevent anonymous access by prompting for login
-# credentials.
-alpine.enforce.authentication=true
-
-# Optional
-# When authorization is enforced, team membership for both API keys and user
-# accounts are restricted to what the team itself has access to. To enforce 
-# authorization, the enforce.authentication property (above) must be true.
-alpine.enforce.authorization=true
-
 # Required
 # Specifies the number of bcrypt rounds to use when hashing a users password.
 # The higher the number the more secure the password, at the expense of

diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties
@@ -30,6 +30,12 @@ alpine.data.directory=~/.dependency-track
 # Default is "<alpine.data.directory>/keys/secret.key".
 # alpine.secret.key.path=/var/run/secrets/secret.key
 
+# Optional
+# Defines the prefix to be used for API keys. A maximum prefix length of 251
+# characters is supported.
+# The prefix may also be left empty.
+alpine.api.key.prefix=odt_
+
 # Required
 # Defines the interval (in seconds) to log general heath information.
 # If value equals 0, watchdog logging will be disabled.
@@ -128,19 +134,6 @@ alpine.database.pool.max.lifetime=600000
 # DO NOT CHANGE UNLESS THERE IS A GOOD REASON TO.
 # alpine.datanucleus.cache.level2.type=
 
-# Optional
-# When authentication is enforced, API keys are required for automation,
-# and the user interface will prevent anonymous access by prompting for login
-# credentials.
-alpine.enforce.authentication=true
-
-# Optional
-# When authorization is enforced, team membership for both API keys and
-# user accounts are restricted to what the team itself has access to.
-# To enforce authorization, the enforce.authentication property (above)
-# must be true.
-alpine.enforce.authorization=true
-
 # Required
 # Specifies the number of bcrypt rounds to use when hashing a users password.
 # The higher the number the more secure the password, at the expense of