Files

Marcin Maliszkiewicz c7d3f80863 Merge 'auth: do not create default 'cassandra:cassandra' superuser' from Dario Mirovic

This patch series removes creation of default 'cassandra:cassandra' superuser on system start.

Disable creation of a superuser with default 'cassandra:cassandra' credentials to improve security. The current flow requires clients to create another superuser and then drop the default `cassandra:cassandra' role. For those who do, there is a time window where the default credentials exist. For those who do not, that role stays. We want to improve security by forcing the client to either use config to specify default values for default superuser name and password or use cqlsh over maintenance socket connection to explicitly create/alter a superuser role.

The patch series:
- Enable role modification over the maintenance socket
- Stop using default 'cassandra' value for default superuser, skipping creation instead

Design document: https://scylladb.atlassian.net/wiki/spaces/RND/pages/165773327/Drop+default+cassandra+superuser

Fixes scylladb/scylla-enterprise#5657

This is an improvement. It does not need a backport.

Closes scylladb/scylladb#27215

* github.com:scylladb/scylladb:
  config: enable maintenance socket in workdir by default
  docs: auth: do not specify password with -p option
  docs: update documentation related to default superuser
  test: maintenance socket role management
  test: cluster: add logs to test_maintenance_socket.py
  test: pylib: fix connect_driver handling when adding and starting server
  auth: do not create default 'cassandra:cassandra' superuser
  auth: remove redundant DEFAULT_USER_NAME from password authenticator
  auth: enable role management operations via maintenance socket
  client_state: add has_superuser method
  client_state: add _bypass_auth_checks flag
  auth: let maintenance_socket_role_manager know if node is in maintenance mode
  auth: remove class registrator usage
  auth: instantiate auth service with factory functors
  auth: add service constructor with factory functors
  auth: add transitional.hh file
  service: qos: handle special scheduling group case for maintenance socket
  service: qos: use _auth_integration as condition for using _auth_integration

2026-03-04 09:43:57 +01:00

_ext

docs: fix local build

2025-12-14 11:48:48 +02:00

_static

doc: add OS support for version 2025.4

2025-10-28 13:29:40 +03:00

_templates

docs: do not show any version warning for upgrade guide pages

2025-08-22 09:49:27 +03:00

_utils

doc: replace the OS Support page with a link to the new location

2026-02-06 11:38:21 +02:00

alternator

doc: remove the tablets limitation for Alternator

2026-02-24 14:24:30 +02:00

architecture

tablet options: Add max_tablet_count tablet option to enforce tablet count upper bounds

2026-03-03 11:19:24 +03:00

cql

tablet options: Add max_tablet_count tablet option to enforce tablet count upper bounds

2026-03-03 11:19:24 +03:00

dev

Merge 'Add multiple-shard persistent metadata storage for strongly consistent tables' from Wojciech Mitros

2026-03-04 08:55:43 +02:00

features

docs/cql: document the new CQL per-row TTL feature

2026-02-25 14:59:44 +02:00

getting-started

doc: remove reduntant Java-related information

2026-02-24 14:37:39 +01:00

docs/cql: document the new CQL per-row TTL feature

2026-02-25 14:59:44 +02:00

operating-scylla

docs: auth: do not specify password with -p option

2026-03-04 00:01:07 +01:00

reference

docs: make the glossary more tablet inclusive

2026-01-19 11:50:13 +03:00

rst_include

doc: remove the redundant raw:: html directive

2024-10-17 13:41:15 +03:00

troubleshooting

docs: auth: do not specify password with -p option

2026-03-04 00:01:07 +01:00

upgrade

doc: add the upgrade guide from 2025.x to 2026.1

2026-02-27 15:36:34 +02:00

using-scylla

doc: remove references to Open Source

2026-01-13 08:43:26 +02:00

.gitignore

docs: enable tooltips

2024-11-06 14:09:28 +02:00

conf.py

docs: add metrics generation validation

2025-11-25 15:39:52 +03:00

faq.rst

doc: replace the OS Support page with a link to the new location

2026-02-06 11:38:21 +02:00

index.rst

replace the Driver pages with a link to the new Drivers pages

2025-12-04 10:07:27 +02:00

Makefile

docs: update Sphinx configuration for unified repository publishing

2025-01-07 12:54:51 +02:00

poetry.lock

build(deps): bump sphinx-multiversion-scylla in /docs

2026-03-02 14:13:03 +01:00

pyproject.toml

build(deps): bump sphinx-multiversion-scylla in /docs

2026-03-02 14:13:03 +01:00

README-metrics.md

docs: add metrics generation validation

2025-11-25 15:39:52 +03:00

README.md

Clarify documentation build instructions

2025-12-16 06:56:00 +02:00

robots.txt

…

README.md

ScyllaDB Documentation

This repository contains the source files for ScyllaDB documentation.

The dev folder contains developer-oriented documentation related to the ScyllaDB code base. It is not published and is only available via GitHub.
All other folders and files contain user-oriented documentation related to ScyllaDB and are sources for docs.scylladb.com/manual.

To report a documentation bug or suggest an improvement, open an issue in GitHub issues for this project.

To contribute to the documentation, open a GitHub pull request.

Key Guidelines for Contributors

The user documentation is written in reStructuredText (RST) - a plaintext markup language similar to Markdown. If you're not familiar with RST, see ScyllaDB RST Examples.
The developer documentation is written in Markdown. See Basic Markdown Syntax for reference.
Follow the ScyllaDB Style Guide.

To prevent the build from failing:

If you add a new file, ensure it's added to an appropriate toctree, for example:

 .. toctree::
    :maxdepth: 2
    :hidden:

    Page X </folder1/article1>
    Page Y </folder1/article2>
    Your New Page </folder1/your-new-article>

Make sure the link syntax is correct. See the guidelines on creating links
Make sure the section headings are correct. See the guidelines on creating headings Note that the markup must be at least as long as the text in the heading. For example:
```
----------------------
Prerequisites
----------------------
```

Building User Documentation

Prerequisites

Python
poetry
make

See the ScyllaDB Sphinx Theme prerequisites to check which versions of the above are currently required.

Mac OS X

You must have a working Homebrew in order to install the needed tools.

You also need the standard utility make.

Check if you have these two items with the following commands:

brew help
make -h

Linux Distributions

Building the user docs should work out of the box on most Linux distributions.

Windows

Use "Bash on Ubuntu on Windows" for the same tools and capabilities as on Linux distributions.

Building the Docs

Run make preview in the docs/ directory to build the documentation.
Preview the built documentation locally at http://127.0.0.1:5500/.

Cleanup

You can clean up all the build products and auto-installed Python stuff with:

make pristine

Information for Contributors

If you are interested in contributing to Scylla docs, please read the Scylla open source page at http://www.scylladb.com/opensource/ and complete a Scylla contributor agreement if needed. We can only accept documentation pull requests if we have a contributor agreement on file for you.

Third-party Documentation

Do any copying as a separate commit. Always commit an unmodified version first and then do any editing in a separate commit.
We already have a copy of the Apache license in our tree, so you do not need to commit a copy of the license.
Include the copyright header from the source file in the edited version. If you are copying an Apache Cassandra document with no copyright header, use:

This document includes material from Apache Cassandra.
Apache Cassandra is Copyright 2009-2014 The Apache Software Foundation.