hbase-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Larry McCay (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HBASE-11810) Access SSL Passwords through Credential Provider API
Date Fri, 29 Aug 2014 12:33:53 GMT

    [ https://issues.apache.org/jira/browse/HBASE-11810?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14115202#comment-14115202
] 

Larry McCay commented on HBASE-11810:
-------------------------------------

Hey [~apurtell] - I'm not seeing this patch committed anywhere - should I? Since the jira
is marked as fixed - I expected to see it in the source tree.

> Access SSL Passwords through Credential Provider API
> ----------------------------------------------------
>
>                 Key: HBASE-11810
>                 URL: https://issues.apache.org/jira/browse/HBASE-11810
>             Project: HBase
>          Issue Type: Improvement
>          Components: security
>            Reporter: Larry McCay
>            Assignee: Larry McCay
>             Fix For: 0.99.0, 2.0.0, 0.98.6
>
>         Attachments: HBASE_11810-2.patch, HBASE_11810.patch
>
>
> HADOOP-10607 introduced the credential provider API for allowing passwords and other
sensitive configuration items to be stored in an external provider.
> RESTServer is accessing passwords stored in clear text in Configuration through the standard
get() method. By using the new Configuration.getPassword method instead, the credential provider
API will be checked first then fall back to clear text - when allowed.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message