[
https://issues.apache.org/jira/browse/HBASE-11810?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14108484#comment-14108484
]
Devaraj Das commented on HBASE-11810:
-------------------------------------
Larry, thanks for doing this work.
I think it is fine to do this using Reflection (as you described in your
comment) to take care of the differences within the hadoop-2.x versions. I
don't think we need to do this in the compatibility layer.
> Access SSL Passwords through Credential Provider API
> ----------------------------------------------------
>
> Key: HBASE-11810
> URL: https://issues.apache.org/jira/browse/HBASE-11810
> Project: HBase
> Issue Type: Improvement
> Components: security
> Reporter: Larry McCay
>
> HADOOP-10607 introduced the credential provider API for allowing passwords
> and other sensitive configuration items to be stored in an external provider.
> RESTServer is accessing passwords stored in clear text in Configuration
> through the standard get() method. By using the new Configuration.getPassword
> method instead, the credential provider API will be checked first then fall
> back to clear text - when allowed.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
