Senthuran Sivananthan created SOLR-4392:
-------------------------------------------
Summary: DIH - Need to externalize or encrypt username/password
stored within data-config.xml
Key: SOLR-4392
URL: https://issues.apache.org/jira/browse/SOLR-4392
Project: Solr
Issue Type: New Feature
Components: contrib - DataImportHandler
Affects Versions: 4.1, 4.0
Reporter: Senthuran Sivananthan
Today, the connection (database or otherwise) credentials is wide open in
data-config.xml. Not really an issue until someone sends out the config file
outside of the server.
We should look into externalizing the database lookup or providing a way to
encrypt the username and password.
The needs are:
1/ Some projects want to enable multi-tenancy where data for each core is
situated in different database servers w/ their own credentials. We need a way
to expose hooks that will allow implementations to be plugged in. It can be
done though the "type" attribute on the dataSource, but providing a factory
might work better.
2/ Most orgs are very protective of their credentials and weary of plain-text
settings.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
