[
https://issues.apache.org/jira/browse/HBASE-11810?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14108086#comment-14108086
]
Larry McCay commented on HBASE-11810:
-------------------------------------
I've figured as much - it is a common pattern and others have already done it
for this very usecase. So, it should be pretty easy to adapt for HBase. Both
Hive and Accumulo have already done the same thing.
> Access SSL Passwords through Credential Provider API
> ----------------------------------------------------
>
> Key: HBASE-11810
> URL: https://issues.apache.org/jira/browse/HBASE-11810
> Project: HBase
> Issue Type: Improvement
> Components: security
> Reporter: Larry McCay
>
> HADOOP-10607 introduced the credential provider API for allowing passwords
> and other sensitive configuration items to be stored in an external provider.
> RESTServer is accessing passwords stored in clear text in Configuration
> through the standard get() method. By using the new Configuration.getPassword
> method instead, the credential provider API will be checked first then fall
> back to clear text - when allowed.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
