[jira] [Created] (OOZIE-2771) Allow retrieving keystore and truststore passwords from Hadoop Credential Provider

Attila Sasvari (JIRA) Tue, 10 Jan 2017 04:05:37 -0800

Attila Sasvari created OOZIE-2771:
-------------------------------------

             Summary: Allow retrieving keystore and truststore passwords from 
Hadoop Credential Provider
                 Key: OOZIE-2771
                 URL: https://issues.apache.org/jira/browse/OOZIE-2771
             Project: Oozie
          Issue Type: Improvement
            Reporter: Attila Sasvari



Right now passwords for keystore and truststore ({{oozie.https.keystore.pass}}, 
{{oozie.https.truststore.pass}}) are stored in {{oozie-site.xml}} as cleartext.

However, Oozie could take advantage of the Hadoop Credential Provider for 
storing and retrieving that passwords similarly how the JDBC password 
({{oozie.service.JPAService.jdbc.password}}) is handled today (see 
https://issues.apache.org/jira/browse/OOZIE-2272).

This way keystore and truststore passwords could be masked in oozie-site.

Note: {{ConfigurationService.getPassword}} is worth to look at.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Created] (OOZIE-2771) Allow retrieving keystore and truststore passwords from Hadoop Credential Provider

Reply via email to