hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Larry McCay (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-10904) Provide Alt to Clear Text Passwords through Cred Provider API
Date Wed, 30 Jul 2014 20:08:39 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-10904?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14079875#comment-14079875
] 

Larry McCay commented on HADOOP-10904:
--------------------------------------

Hi [~tucu00] - that was something that was discussed early on in development of the credential
provider api in HADOOP-10607 and it was decided that it would be better to just add the getPassword
method that basically does the same thing without adding additional properties.

If you look at the getPassword method you will see that:
1. if there is no provider.path defined for credential providers then it fallsback to config
2. if there is alias of the provided name then it fallsback to config
3. it is possible to turn off the fallback for deployments where it isn't acceptable to have
passwords in config

I think the deprecation warning may be interesting as a separate jira. I haven't actually
proposed that we deprecate the existing mechanisms - that may need some additional discussion.

What do you think?

> Provide Alt to Clear Text Passwords through Cred Provider API
> -------------------------------------------------------------
>
>                 Key: HADOOP-10904
>                 URL: https://issues.apache.org/jira/browse/HADOOP-10904
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: security
>            Reporter: Larry McCay
>            Assignee: Larry McCay
>
> This is an umbrella jira to track various child tasks to uptake the credential provider
API to enable deployments without storing passwords/credentials in clear text.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message