flyrain commented on PR #1532:
URL: https://github.com/apache/polaris/pull/1532#issuecomment-2859819947
```
S3("org.apache.iceberg.aws.s3.S3FileIO", true),
GCS("org.apache.iceberg.gcp.gcs.GCSFileIO", true),
AZURE("org.apache.iceberg.azure.adlsv2.ADLSFileIO", true),
FILE("org.apache.iceberg.hadoop.HadoopFileIO", false),
```
Thanks for bring this up. It's a good point to clarify whether the
HadoopFileIO is suitable for production. However, there is no guarantee any of
above strings ensure a secure FileIO. They can be easily injected by any
customized build or even completely different implementations with the same
name. I believe it is ultimately Polaris admin's responsibility to make sure
their Polaris deployment as secure as possible. We(Polaris developer/community)
can provide suggestions to them for sure. With that, I'm +1 on well documented
behavior on HadoopFileIO, but I don't think these checking and new
configurations are necessary. `SUPPORTED_CATALOG_STORAGE_TYPES` should be good
enough to let Polaris admin make the decision.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: issues-unsubscr...@polaris.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
