[
https://issues.apache.org/jira/browse/FLINK-36805?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17904153#comment-17904153
]
zjjiang commented on FLINK-36805:
---------------------------------
Thanks for the suggestion, that's a great idea to use an actively maintained
library. Now I'm thinking that we can provide an interface by implementing
which developers can customize the decryption method and choose the appropriate
dependency library themselves. This way we can bypass the above problem of
choosing a dependency library. Considering that base64 encoding is one of the
most commonly used encoding methods, I would like to implement a basic base64
encoding first, not only as an example implementation of the interface, but
also to solve the current problem of plaintext passwords.
> Add support for using encrypted passwords in pipeline definitions
> -----------------------------------------------------------------
>
> Key: FLINK-36805
> URL: https://issues.apache.org/jira/browse/FLINK-36805
> Project: Flink
> Issue Type: Improvement
> Components: Flink CDC
> Affects Versions: cdc-3.1.0, cdc-3.2.0, cdc-3.1.1, cdc-3.3.0
> Reporter: zjjiang
> Priority: Major
>
> When we use Flink CDC to submit jobs, we need to set passwords for connecting
> to source and sink (e.g., mysql, doris, etc.) in plaintext in the pipeline
> definition file(*.yaml), which may be a security risk. To avoid the use of
> plaintext passwords, we would like the pipeline definition file to support
> encrypted passwords.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
