?flt1_extra_contains=conn_password

t oo (JIRA) Thu, 28 Mar 2019 05:41:27 -0700

t oo created AIRFLOW-4176:
-----------------------------

             Summary: [security] webui shows password - 
admin/log/?flt1_extra_contains=conn_password
                 Key: AIRFLOW-4176
                 URL: https://issues.apache.org/jira/browse/AIRFLOW-4176
             Project: Apache Airflow
          Issue Type: Bug
          Components: security, ui
    Affects Versions: 1.10.2
            Reporter: t oo
         Attachments: airf.png


First setup hivecli connection:

source /home/ec2-user/venv/bin/activate; airflow connections -a --conn_id 
query_hive --conn_type hive_cli --conn_host domainhere --conn_port 10000 
--conn_schema default --conn_extra "\{\"use_beeline\":\"true\", 
\"ssl-options\":\"ssl=true;sslTrustStore=path-${RUNTIME_ENV}.jks;trustStorePassword=${QUERY_JKS_PASW}\"}"
 --conn_login ${QUERY_HIVE_USER} --conn_password ${QUERY_HIVE_PASW}

 

On the webui navigate to domain/admin/log/?flt1_extra_contains=conn_password

and you will be able to see cleartext user and password!

see attachment



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Created] (AIRFLOW-4176) [security] webui shows password - admin/log/?flt1_extra_contains=conn_password

Reply via email to