Blossom is a Java framework based on Spring-Boot which enables you to realize your projects quickly and smoothly. It comes with several modules and tools made to ease and speed up your development process.
The current default is to have a system account with a fixed password, which means that if a project goes live leaving inadvertently the defaults, anyone would be able to easily access the back-office and its advanced functionalities (through Actuator).
We should tweak it so that defaults would be good enough even for live apps:
System password generated at boot and shown in logs, like what's default for spring security.
Disable system account automatically when at least one account with enough rights to administer roles exists
The current default is to have a system account with a fixed password, which means that if a project goes live leaving inadvertently the defaults, anyone would be able to easily access the back-office and its advanced functionalities (through Actuator).
We should tweak it so that defaults would be good enough even for live apps: