Return-Path: 
 <issues-return-150313-apmail-hbase-issues-archive=hbase.apache.org@hbase.apache.org>
X-Original-To: apmail-hbase-issues-archive@www.apache.org
Delivered-To: apmail-hbase-issues-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 5515511364
	for <apmail-hbase-issues-archive@www.apache.org>;
 Fri, 20 Jun 2014 01:16:27 +0000 (UTC)
Received: (qmail 94748 invoked by uid 500); 20 Jun 2014 01:16:26 -0000
Delivered-To: apmail-hbase-issues-archive@hbase.apache.org
Received: (qmail 94681 invoked by uid 500); 20 Jun 2014 01:16:26 -0000
Mailing-List: contact issues-help@hbase.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@hbase.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@hbase.apache.org>
List-Post: <mailto:issues@hbase.apache.org>
List-Id: <issues.hbase.apache.org>
Delivered-To: mailing list issues@hbase.apache.org
Received: (qmail 94559 invoked by uid 99); 20 Jun 2014 01:16:26 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 20 Jun 2014 01:16:26 +0000
Date: Fri, 20 Jun 2014 01:16:26 +0000 (UTC)
From: "Jieshan Bean (JIRA)" <jira@apache.org>
To: issues@hbase.apache.org
Message-ID: <JIRA.12721147.1402678522563.14232.1403226986595@arcas>
In-Reply-To: <JIRA.12721147.1402678522563@arcas>
References: <JIRA.12721147.1402678522563@arcas>
Subject: [jira] [Commented] (HBASE-11344) Hide row keys and such from the
 web UIs
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/HBASE-11344?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14038214#comment-14038214 ] 

Jieshan Bean commented on HBASE-11344:
--------------------------------------

+1 on this idea. We are suffering the same security problem.

> Hide row keys and such from the web UIs
> ---------------------------------------
>
>                 Key: HBASE-11344
>                 URL: https://issues.apache.org/jira/browse/HBASE-11344
>             Project: HBase
>          Issue Type: Improvement
>            Reporter: Devaraj Das
>             Fix For: 0.99.0
>
>
> The table details on the master UI lists the start row keys of the regions. The row keys might have sensitive data. We should hide them based on whether or not the user accessing has the required authorization to view the table.. To start with, we could make the display of row keys and such based on a configuration being true or false. If it is false, such potentially sensitive data is never displayed on the web UI.



--
This message was sent by Atlassian JIRA
(v6.2#6252)