István Fajth created HDDS-10604:
-----------------------------------
Summary: Whitelist based compliance check for crypto related
configuration
Key: HDDS-10604
URL: https://issues.apache.org/jira/browse/HDDS-10604
Project: Apache Ozone
Issue Type: Improvement
Reporter: István Fajth
Our base class of configuration is OzoneConfiguration, which is a direct child
class of Hadoop's Configuration object.
This makes it ideal to implement a common way to get a crypto related
configuration parameter just after it was checked to be present in the relevant
whitelist. In case the configuration option's value is not present in the
whitelist an exception should be thrown, that shuts down the component.
This method should take the config option, and the config option of the
relevant whitelist, besides the default value so defaults should be provided
programmatically.
With that we introduce the possibility to select the proper default value for
the environment based on either from code, or from additional config files,
that this routine can help later on. The initial version should only support
the wildcard as the whitelist, it is still to be investigated what would be the
best option to provide a generic way to define the relation between one config
option and the relevant whitelist for this option.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
