falcon-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "pavan kumar kolamuri (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (FALCON-1601) Make Falcon StateStore more secure by not disclosing imp params in startup.props
Date Wed, 23 Dec 2015 10:18:46 GMT

    [ https://issues.apache.org/jira/browse/FALCON-1601?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15069468#comment-15069468
] 

pavan kumar kolamuri commented on FALCON-1601:
----------------------------------------------

Thanks for the review [~ajayyadava] . Let me explain my thoughts over this approach

1) Falcon should give users a way to securely state store credentials, it shouldn't mandate
on that. In QA environment or dev testing environment, they don't care of security. That's
why i have provided a way to securely store credentials, if they don't want they can simply
store password in statestore.properties.

2) I have given options to user to specify statestore credentials either in statestore.properties
or secure file with 400 permissions. Let's user decide what they want to do. 






> Make Falcon StateStore more secure by not disclosing imp params in startup.props 
> ---------------------------------------------------------------------------------
>
>                 Key: FALCON-1601
>                 URL: https://issues.apache.org/jira/browse/FALCON-1601
>             Project: Falcon
>          Issue Type: Improvement
>            Reporter: pavan kumar kolamuri
>            Assignee: pavan kumar kolamuri
>         Attachments: FALCON-1601.patch
>
>
> We are bringing Falcon state Store DB for Native Scheduler as part of https://issues.apache.org/jira/browse/FALCON-1234,
We need to add more secureness by removing password properties from startup props and also
made this Statestore supports Mysql as well.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message