[
https://issues.apache.org/jira/browse/FALCON-1601?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15069468#comment-15069468
]
pavan kumar kolamuri commented on FALCON-1601:
----------------------------------------------
Thanks for the review [~ajayyadava] . Let me explain my thoughts over this
approach
1) Falcon should give users a way to securely state store credentials, it
shouldn't mandate on that. In QA environment or dev testing environment, they
don't care of security. That's why i have provided a way to securely store
credentials, if they don't want they can simply store password in
statestore.properties.
2) I have given options to user to specify statestore credentials either in
statestore.properties or secure file with 400 permissions. Let's user decide
what they want to do.
> Make Falcon StateStore more secure by not disclosing imp params in
> startup.props
> ---------------------------------------------------------------------------------
>
> Key: FALCON-1601
> URL: https://issues.apache.org/jira/browse/FALCON-1601
> Project: Falcon
> Issue Type: Improvement
> Reporter: pavan kumar kolamuri
> Assignee: pavan kumar kolamuri
> Attachments: FALCON-1601.patch
>
>
> We are bringing Falcon state Store DB for Native Scheduler as part of
> https://issues.apache.org/jira/browse/FALCON-1234, We need to add more
> secureness by removing password properties from startup props and also made
> this Statestore supports Mysql as well.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
