Return-Path: 
 <issues-return-159101-apmail-hbase-issues-archive=hbase.apache.org@hbase.apache.org>
X-Original-To: apmail-hbase-issues-archive@www.apache.org
Delivered-To: apmail-hbase-issues-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 5A3AA11028
	for <apmail-hbase-issues-archive@www.apache.org>;
 Tue, 26 Aug 2014 18:01:59 +0000 (UTC)
Received: (qmail 52546 invoked by uid 500); 26 Aug 2014 18:01:59 -0000
Delivered-To: apmail-hbase-issues-archive@hbase.apache.org
Received: (qmail 52505 invoked by uid 500); 26 Aug 2014 18:01:59 -0000
Mailing-List: contact issues-help@hbase.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@hbase.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@hbase.apache.org>
List-Post: <mailto:issues@hbase.apache.org>
List-Id: <issues.hbase.apache.org>
Delivered-To: mailing list issues@hbase.apache.org
Received: (qmail 52493 invoked by uid 99); 26 Aug 2014 18:01:59 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Aug 2014 18:01:59 +0000
Date: Tue, 26 Aug 2014 18:01:59 +0000 (UTC)
From: "Larry McCay (JIRA)" <jira@apache.org>
To: issues@hbase.apache.org
Message-ID: <JIRA.12736225.1408757420984.15933.1409076119089@arcas>
In-Reply-To: <JIRA.12736225.1408757420984@arcas>
References: <JIRA.12736225.1408757420984@arcas>
Subject: [jira] [Updated] (HBASE-11810) Access SSL Passwords through
 Credential Provider API
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


     [ https://issues.apache.org/jira/browse/HBASE-11810?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Larry McCay updated HBASE-11810:
--------------------------------

    Status: Patch Available  (was: Open)

> Access SSL Passwords through Credential Provider API
> ----------------------------------------------------
>
>                 Key: HBASE-11810
>                 URL: https://issues.apache.org/jira/browse/HBASE-11810
>             Project: HBase
>          Issue Type: Improvement
>          Components: security
>            Reporter: Larry McCay
>         Attachments: HBASE_11810.patch
>
>
> HADOOP-10607 introduced the credential provider API for allowing passwords and other sensitive configuration items to be stored in an external provider.
> RESTServer is accessing passwords stored in clear text in Configuration through the standard get() method. By using the new Configuration.getPassword method instead, the credential provider API will be checked first then fall back to clear text - when allowed.



--
This message was sent by Atlassian JIRA
(v6.2#6252)