Peter Varga created HIVE-23045: ---------------------------------- Summary: Zookeeper SSL/TLS support Key: HIVE-23045 URL: https://issues.apache.org/jira/browse/HIVE-23045 Project: Hive Issue Type: Improvement Components: HiveServer2, JDBC, Metastore Reporter: Peter Varga Assignee: Peter Varga
Zookeeper 3.5.5 server can operate with SSL/TLS secure connection with its clients. [https://cwiki.apache.org/confluence/display/ZOOKEEPER/ZooKeeper+SSL+User+Guide] The SSL communication should be possible in the different part of HIVE, where it communicates with Zookeeper servers. The Zookeeper clients are used in the following places: * HiveServer2 PrivilegeSynchronizer * HiveServer2 register/remove server from Zookeeper * HS2ActivePassiveHARegistryClient * ZooKeeperHiveLockManager * LLapZookeeperRegistryImpl * TezAmRegistryImpl * WebHCat ZooKeeperStorage * JDBC Driver server lookup * Metastore - ZookeeperTokenStore * Metastore register/remove server from Zookeeper The flag to enable SSL communication and the required parameters should be provided by different configuration parameters, corresponding the different use cases. -- This message was sent by Atlassian Jira (v8.3.4#803005)