hive-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Kristopher Kane (JIRA)" <j...@apache.org>
Subject [jira] [Work started] (HIVE-21894) Hadoop credential password storage for the Kafka Storage handler when security is SSL
Date Thu, 20 Jun 2019 13:22:00 GMT

     [ https://issues.apache.org/jira/browse/HIVE-21894?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Work on HIVE-21894 started by Kristopher Kane.
----------------------------------------------
> Hadoop credential password storage for the Kafka Storage handler when security is SSL
> -------------------------------------------------------------------------------------
>
>                 Key: HIVE-21894
>                 URL: https://issues.apache.org/jira/browse/HIVE-21894
>             Project: Hive
>          Issue Type: Improvement
>          Components: kafka integration
>    Affects Versions: 4.0.0, 3.1.1
>            Reporter: Kristopher Kane
>            Assignee: Kristopher Kane
>            Priority: Major
>             Fix For: 4.0.0
>
>
> The Kafka storage handler assumes that if the Hive service is configured with Kerberos
then the destination Kafka cluster is also secured with the same Kerberos realm or trust of
realms.  The security configuration of the Kafka client can be overwritten due to the additive
operations of the Kafka client configs, but, the only way to specify SSL and the keystore/truststore
user/pass is via plain text table properties. 
> This ticket proposes adding Hadoop credential security to the Kafka storage handler in
support of SSL secured Kafka clusters.  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message