feat(jans-linux-setup): disable time zone for pgsql

[devrimyatar]

closes #8761

[dryrunsecurity]

Hi there 👋, @DryRunSecurity here, below is a summary of our analysis and findings.

DryRun Security	Status	Findings
Server-Side Request Forgery Analyzer	✅	0 findings
Configured Codepaths Analyzer	✅	0 findings
Secrets Analyzer	✅	0 findings
Authn/Authz Analyzer	✅	0 findings
SQL Injection Analyzer	✅	0 findings
Sensitive Files Analyzer	✅	0 findings
IDOR Analyzer	✅	0 findings

Note

🟢 Risk threshold not exceeded.

Change Summary (click to expand)

The following is a summary of changes in this pull request made by me, your security buddy 🤖. Note that this summary is auto-generated and not meant to be a definitive list of security issues but rather a helpful summary from a security perspective.

Summary:

The code changes in this pull request are focused on the configuration file jans-pgsql.properties, which contains the settings for the PostgreSQL database connection used by the Jans application. The key changes include the addition of the db.disable.time-zone=true setting, which disables the use of time zone information in the database connection. While this change may have implications for how the application handles and stores date and time information, it does not appear to introduce any obvious security concerns.

The file also contains several configuration settings related to the database connection pool, such as the maximum number of connections, minimum idle connections, and connection timeout settings. These settings are important for managing the database connection resources and ensuring the application's scalability and performance. Overall, the changes in this pull request appear to be focused on the database configuration and do not seem to introduce any obvious security vulnerabilities. However, it's important to review the changes carefully and ensure that they do not have any unintended consequences or impact the application's overall security posture.

Files Changed:

• jans-linux-setup/jans_setup/templates/jans-pgsql.properties: This file contains the configuration settings for the PostgreSQL database connection used by the Jans application. The key changes in this pull request include the addition of the db.disable.time-zone=true setting, which disables the use of time zone information in the database connection, and several existing configuration settings related to the database connection pool.

Powered by DryRun Security

[sonarcloud]

Quality Gate passed for 'jans-linux-setup'

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud