[jira] [Work logged] (KNOX-2462) Let end-users customize credential store type

Tue, 13 Oct 2020 07:49:21 -0700 


     [ 
https://issues.apache.org/jira/browse/KNOX-2462?focusedWorklogId=500092&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-500092
 ]

ASF GitHub Bot logged work on KNOX-2462:
----------------------------------------

                Author: ASF GitHub Bot
            Created on: 13/Oct/20 14:48
            Start Date: 13/Oct/20 14:48
    Worklog Time Spent: 10m 
      Work Description: smolnar82 opened a new pull request #381:
URL: https://github.com/apache/knox/pull/381


   KNOX-2463 - Let end-users customize security algorithm for internal 
credential stores
   KNOX-2464 - KnoxCLI should pass GatewayConfig when setting up master secret 
so that encryptor becomes initialized
   
   ## What changes were proposed in this pull request?
   
   This PR contains resolution for 3 JIRAs at once (using different commits, of 
course) as they are related to each other. In these commits, I made sure that:
   - credential store type is configurable via `gateway-site.xml` (defaults to 
`JCEKS`)
   - the algorithm Knox uses when creating an entry in a credential is 
configurable via `gateway-site.xml` (defaults to `AES`)
   - fixed the bug in KnoxCLI of not considering inputs from `gateway-site.xml`
   
   ## How was this patch tested?
   
   Tested manually in a CM managed cluster where I set:
   ```
   gateway.credential.store.type = BCFKS
   gateway.credential.store.alg = HMACSHA512
   gateway.crypto.salt.size = 16
   ```
   All changes were picked up and Knox functioned as expected.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
[email protected]


Issue Time Tracking
-------------------

            Worklog Id:     (was: 500092)
    Remaining Estimate: 0h
            Time Spent: 10m

> Let end-users customize credential store type
> ---------------------------------------------
>
>                 Key: KNOX-2462
>                 URL: https://issues.apache.org/jira/browse/KNOX-2462
>             Project: Apache Knox
>          Issue Type: Improvement
>          Components: Server
>            Reporter: Sandor Molnar
>            Assignee: Sandor Molnar
>            Priority: Major
>             Fix For: 1.5.0
>
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> As of now, the JCEKS credential store type is hard-coded in Knox's code. 
> There should be a way to change it via configuration.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to