falcon-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "pavan kumar kolamuri (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (FALCON-1601) Make Falcon StateStore more secure by not disclosing imp params in startup.props
Date Wed, 23 Dec 2015 10:18:46 GMT

    [ https://issues.apache.org/jira/browse/FALCON-1601?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15069468#comment-15069468

pavan kumar kolamuri commented on FALCON-1601:

Thanks for the review [~ajayyadava] . Let me explain my thoughts over this approach

1) Falcon should give users a way to securely state store credentials, it shouldn't mandate
on that. In QA environment or dev testing environment, they don't care of security. That's
why i have provided a way to securely store credentials, if they don't want they can simply
store password in statestore.properties.

2) I have given options to user to specify statestore credentials either in statestore.properties
or secure file with 400 permissions. Let's user decide what they want to do. 

> Make Falcon StateStore more secure by not disclosing imp params in startup.props 
> ---------------------------------------------------------------------------------
>                 Key: FALCON-1601
>                 URL: https://issues.apache.org/jira/browse/FALCON-1601
>             Project: Falcon
>          Issue Type: Improvement
>            Reporter: pavan kumar kolamuri
>            Assignee: pavan kumar kolamuri
>         Attachments: FALCON-1601.patch
> We are bringing Falcon state Store DB for Native Scheduler as part of https://issues.apache.org/jira/browse/FALCON-1234,
We need to add more secureness by removing password properties from startup props and also
made this Statestore supports Mysql as well.

This message was sent by Atlassian JIRA

View raw message