Peter Varga created HIVE-23045:
----------------------------------
Summary: Zookeeper SSL/TLS support
Key: HIVE-23045
URL: https://issues.apache.org/jira/browse/HIVE-23045
Project: Hive
Issue Type: Improvement
Components: HiveServer2, JDBC, Metastore
Reporter: Peter Varga
Assignee: Peter Varga
Zookeeper 3.5.5 server can operate with SSL/TLS secure connection with its
clients.
[https://cwiki.apache.org/confluence/display/ZOOKEEPER/ZooKeeper+SSL+User+Guide]
The SSL communication should be possible in the different part of HIVE, where
it communicates with Zookeeper servers. The Zookeeper clients are used in the
following places:
* HiveServer2 PrivilegeSynchronizer
* HiveServer2 register/remove server from Zookeeper
* HS2ActivePassiveHARegistryClient
* ZooKeeperHiveLockManager
* LLapZookeeperRegistryImpl
* TezAmRegistryImpl
* WebHCat ZooKeeperStorage
* JDBC Driver server lookup
* Metastore - ZookeeperTokenStore
* Metastore register/remove server from Zookeeper
The flag to enable SSL communication and the required parameters should be
provided by different configuration parameters, corresponding the different use
cases.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
