This is an automated email from the ASF dual-hosted git repository.
kturner pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/fluo-uno.git
The following commit(s) were added to refs/heads/master by this push:
new f1419bf Added option to enable encryption (#201)
f1419bf is described below
commit f1419bf84406f86b6a3c5e9dcc507e9358d2d993
Author: Nick Felts <[email protected]>
AuthorDate: Thu Oct 4 10:34:50 2018 -0400
Added option to enable encryption (#201)
---
bin/impl/setup-accumulo.sh | 6 ++++++
conf/uno.conf | 2 ++
2 files changed, 8 insertions(+)
diff --git a/bin/impl/setup-accumulo.sh b/bin/impl/setup-accumulo.sh
index cf94ea8..ecbc5ac 100755
--- a/bin/impl/setup-accumulo.sh
+++ b/bin/impl/setup-accumulo.sh
@@ -58,6 +58,12 @@ else
$SED
"s#instance[.]zookeepers=localhost:2181#instance.zookeepers=$UNO_HOST:2181#"
"$conf"/accumulo-client.properties
$SED "s#auth[.]principal=#auth.principal=$ACCUMULO_USER#"
"$conf"/accumulo-client.properties
$SED "s#auth[.]token=#auth.token=$ACCUMULO_PASSWORD#"
"$conf"/accumulo-client.properties
+ if [[ "$ACCUMULO_CRYPTO" == "true" ]]; then
+ openssl rand -out $ACCUMULO_HOME/testkeyfile.key 32
+ echo "instance.crypto.opts.key.provider=uri" >> "$accumulo_conf"
+ echo
"instance.crypto.opts.key.location=file://$ACCUMULO_HOME/conf/data-encryption.key"
>> "$accumulo_conf"
+ echo
"instance.crypto.service=org.apache.accumulo.core.security.crypto.impl.AESCryptoService"
>> "$accumulo_conf"
+ fi
fi
$SED "s#localhost#$UNO_HOST#" "$conf/masters" "$conf/monitor" "$conf/gc"
$SED "s#export ZOOKEEPER_HOME=[^ ]*#export ZOOKEEPER_HOME=$ZOOKEEPER_HOME#"
"$conf"/accumulo-env.sh
diff --git a/conf/uno.conf b/conf/uno.conf
index 1595057..b1c20e1 100644
--- a/conf/uno.conf
+++ b/conf/uno.conf
@@ -143,6 +143,8 @@ export ACCUMULO_INSTANCE=uno
export ACCUMULO_USER=root
# Accumulo password
export ACCUMULO_PASSWORD=secret
+# Accumulo crypto option, 'true' to run with encryption, 'false' to run without
+export ACCUMULO_CRYPTO=false
# Metrics configuration
# ---------------------
