jihoonson opened a new issue #9351: Adding CredentialProvider, deprecating PasswordProvider URL: https://github.com/apache/druid/issues/9351 ### Motivation We are using `PasswordProvider` to secure user passwords in various places. However, it doesn't secure the user name (or account whatever). ### Proposed changes This proposal is to add a new class `CredentialProvider`. Similar to `PasswordProvider`, the `CredentialProvider` provides various ways to get the user credential, but both user name and password. ```java public interface CredentialProvider { String getAccount(); String getPassword(); } ``` ### Rationale Since the `PasswordProvider` has one method of `getPassword()`, we are already using two different `PasswordProvider`s to secure both user name and password in some places. `AWSCredentialsConfig` is an example: ```java public class AWSCredentialsConfig { @JsonProperty private PasswordProvider accessKey = new DefaultPasswordProvider(""); @JsonProperty private PasswordProvider secretKey = new DefaultPasswordProvider(""); ... ``` This is not good for user experience because they generally prefer to secure their account and password in the same way. ### Operational impact The `PasswordProvider` will be deprecated in favor of the new `CredentialProvider`.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
