fivetran-arunsuri commented on issue #1929: URL: https://github.com/apache/polaris/issues/1929#issuecomment-3036155876
@dimas-b @eric-maynard Thanks for the response. We’re in the process of migrating our self-hosted Polaris service from version 0.9 (EclipseLink) to 1.0 (JDBC-based metastore) in order to take advantage of the latest features and improvements in Polaris. As part of this migration, we already have existing users registered with specific client credentials. Rotating these credentials is not an option, as it would break downstream queries and integrations for our customers. We were hoping to register principals using existing clientId and clientSecret values, but currently the createPrincipal API does not support this—it always generates random credentials and stores them after salting and hashing. We’re requesting either: - a new API that allows registering a principal with user-defined credentials, or - support for this functionality in an existing principal registration API. This capability would significantly simplify our migration process, ensuring compatibility with existing credentials across both Polaris versions. Manual copying of principals isn’t a viable alternative, as it wouldn’t preserve the hashed credentials consistently across versions. I will also explore the option of passing these credentials manually—similar to how we handle it during bootstrap—but instead of using command-line input, we’d pass them in the request body. Would love to hear your thoughts on this approach before making any changes or opening a PR. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
