eric-maynard commented on PR #461: URL: https://github.com/apache/polaris/pull/461#issuecomment-2527033463
> It seems odd that Polaris determines whether bootstrapping has failed based on a configuration controlling whether credentials are printed. The issue at hand is that currently credentials are unrecoverable after bootstrapping, which needs to be fixed ASAP. > IIUC, https://github.com/apache/polaris/pull/438 removed plain text secrets from the metastore, meaning these secrets cannot be retrieved unless they are printed in the console. Would it be more reasonable to always print the credentials if they are generated by Polaris? This ensures the secrets remain accessible when needed without relying on an external configuration. @collado-mike expressed concern about an approach like this some time ago. I think a configuration, or perhaps better a CLI argument to the `bootstrap` command, is a good compromise in that it allows a secure behavior by default (e.g. no secrets to stdout) but also gives people an "out" in case they want to use polaris-generated credentials with a metastore that doesn't support retrieving credentials. This last point is also very important to consider: some metastore implementations could allow secrets to be retrieved, in which case it's okay to bootstrap without printing credentials. The issue at hand is that after #438 EclipseLink does not allow this. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
