Github user kanzhang commented on the pull request:
https://github.com/apache/spark/pull/6774#issuecomment-112222537
> If you want to add per-app secrets, you have that justification
regardless of how that secret is propagated.
I can't add it if it doesn't offer any added security benefit. Currently,
with env variable and jobs not run as user, there is no added security to go
per-app secrets.
> But this change is not about per-app secrets, it's about how the secret
is currently passed in the command line.
Agree per-app secrets is better done in a separate patch. Let's not hold up
this one.
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
