[
https://issues.apache.org/jira/browse/OOZIE-34?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13396879#comment-13396879
]
Alejandro Abdelnur commented on OOZIE-34:
-----------------------------------------
Why do we want to mask the username? I think that information is useful to have
it available and it does not pose any risk. Robert, would you mind updating the
patch to mask just the password?
> connProps should mask DB username and password when logging != DEBUG
> --------------------------------------------------------------------
>
> Key: OOZIE-34
> URL: https://issues.apache.org/jira/browse/OOZIE-34
> Project: Oozie
> Issue Type: Improvement
> Reporter: Esteban Gutierrez
> Assignee: Robert Kanter
> Attachments: 34.patch
>
>
> Currently Oozie writes the DB user name and password in oozie.log when
> debugging level is set to INFO:
> 2011-08-29 12:25:17,547 INFO StoreService:525 - USER[-] GROUP[-] TOKEN[-]
> APP[-] JOB[-] ACTION[-] JPA configuration:
> DriverClassName=com.mysql.jdbc.Driver,Url=jdbc:mysql://localhost:3306/oozie,Username=dbuser,Password=dbpassword,MaxActive=10
> Oozie should be able to mask the DB user and password like this:
> 2011-08-29 12:25:17,547 INFO StoreService:525 - USER[-] GROUP[-] TOKEN[-]
> APP[-] JOB[-] ACTION[-] JPA configuration:
> DriverClassName=com.mysql.jdbc.Driver,Url=jdbc:mysql://localhost:3306/oozie,Username=*****,Password=****,MaxActive=10
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
