Gerrit-K commented on issue #624: URL: https://github.com/apache/polaris/issues/624#issuecomment-2700634088
@eric-maynard Thanks for the update! Reading through that PR description, I'm curious about the rationale behind this seemingly complex workflow. I'm not very familiar with the architecture of Polaris and the permission concept, so this might be a dumb question, but what speaks against directly allowing the root user to _rotate_ (instead of _reset_) another principal's credentials? I don't see a benefit of this 2-step flow, at least from a security perspective. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@polaris.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
