[jira] [Commented] (AMBARI-19427) Ambari-server: Annotate PASSWORD properties with an attribute to indicate that they are credential store aware properties
[ https://issues.apache.org/jira/browse/AMBARI-19427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15830437#comment-15830437 ] Nahappan Somasundaram commented on AMBARI-19427: This can be addressed as a separate issue. > Ambari-server: Annotate PASSWORD properties with an attribute to indicate > that they are credential store aware properties > - > > Key: AMBARI-19427 > URL: https://issues.apache.org/jira/browse/AMBARI-19427 > Project: Ambari > Issue Type: Task > Components: ambari-server >Affects Versions: 2.5.0 >Reporter: Nahappan Somasundaram >Assignee: Nahappan Somasundaram > Fix For: 2.5.0 > > Attachments: rb55348.patch > > > In service configuration files, password properties are of type PASSWORD. > When credential store usage is enabled for the feature, all such properties > will be encrypted and placed in the configuration's JCEKS provider and will > not be available in plain text in the command JSON. > However, there are situations where certain password properties should not be > moved into the configuration's JCEKS provider but left as plain text in the > command JSON for clients which are not credential store aware to consume. > To take of this, password properties that are to be moved to JCEKS provider > should be annotated with a new attribute, "keystore" to explicitly indicate > that these properties are credential store aware. > {code} > > oozie.service.JPAService.jdbc.password > > Database Password > PASSWORD > > DB user password. > IMPORTANT: if password is emtpy leave a 1 space string, the service > trims the value, > if empty Configuration assumes it is NULL. > > > password > false > *true* > > > > {code} -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Commented] (AMBARI-19427) Ambari-server: Annotate PASSWORD properties with an attribute to indicate that they are credential store aware properties
[ https://issues.apache.org/jira/browse/AMBARI-19427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15816029#comment-15816029 ] Hudson commented on AMBARI-19427: - SUCCESS: Integrated in Jenkins build Ambari-branch-2.5 #681 (See [https://builds.apache.org/job/Ambari-branch-2.5/681/]) AMBARI-19427: Ambari-server - Annotate PASSWORD properties with an (nsomasundaram: [http://git-wip-us.apache.org/repos/asf?p=ambari.git=commit=b2541ddb5441938fe9e2ce766559c4a92fdb]) * (edit) ambari-server/src/main/java/org/apache/ambari/server/state/ConfigHelper.java * (edit) ambari-server/src/main/java/org/apache/ambari/server/controller/AmbariManagementControllerImpl.java * (edit) ambari-server/src/main/java/org/apache/ambari/server/state/ValueAttributesInfo.java > Ambari-server: Annotate PASSWORD properties with an attribute to indicate > that they are credential store aware properties > - > > Key: AMBARI-19427 > URL: https://issues.apache.org/jira/browse/AMBARI-19427 > Project: Ambari > Issue Type: Task > Components: ambari-server >Affects Versions: 2.5.0 >Reporter: Nahappan Somasundaram >Assignee: Nahappan Somasundaram > Fix For: 2.5.0 > > Attachments: rb55348.patch > > > In service configuration files, password properties are of type PASSWORD. > When credential store usage is enabled for the feature, all such properties > will be encrypted and placed in the configuration's JCEKS provider and will > not be available in plain text in the command JSON. > However, there are situations where certain password properties should not be > moved into the configuration's JCEKS provider but left as plain text in the > command JSON for clients which are not credential store aware to consume. > To take of this, password properties that are to be moved to JCEKS provider > should be annotated with a new attribute, "keystore" to explicitly indicate > that these properties are credential store aware. > {code} > > oozie.service.JPAService.jdbc.password > > Database Password > PASSWORD > > DB user password. > IMPORTANT: if password is emtpy leave a 1 space string, the service > trims the value, > if empty Configuration assumes it is NULL. > > > password > false > *true* > > > > {code} -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Commented] (AMBARI-19427) Ambari-server: Annotate PASSWORD properties with an attribute to indicate that they are credential store aware properties
[ https://issues.apache.org/jira/browse/AMBARI-19427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15815883#comment-15815883 ] Hudson commented on AMBARI-19427: - SUCCESS: Integrated in Jenkins build Ambari-trunk-Commit #6399 (See [https://builds.apache.org/job/Ambari-trunk-Commit/6399/]) AMBARI-19427: Ambari-server - Annotate PASSWORD properties with an (nsomasundaram: [http://git-wip-us.apache.org/repos/asf?p=ambari.git=commit=e65996f94d5c5d7d2b398f76fda18f4e01a4bf00]) * (edit) ambari-server/src/main/java/org/apache/ambari/server/controller/AmbariManagementControllerImpl.java * (edit) ambari-server/src/main/java/org/apache/ambari/server/state/ConfigHelper.java * (edit) ambari-server/src/main/java/org/apache/ambari/server/state/ValueAttributesInfo.java > Ambari-server: Annotate PASSWORD properties with an attribute to indicate > that they are credential store aware properties > - > > Key: AMBARI-19427 > URL: https://issues.apache.org/jira/browse/AMBARI-19427 > Project: Ambari > Issue Type: Task > Components: ambari-server >Affects Versions: 2.5.0 >Reporter: Nahappan Somasundaram >Assignee: Nahappan Somasundaram > Fix For: 2.5.0 > > Attachments: rb55348.patch > > > In service configuration files, password properties are of type PASSWORD. > When credential store usage is enabled for the feature, all such properties > will be encrypted and placed in the configuration's JCEKS provider and will > not be available in plain text in the command JSON. > However, there are situations where certain password properties should not be > moved into the configuration's JCEKS provider but left as plain text in the > command JSON for clients which are not credential store aware to consume. > To take of this, password properties that are to be moved to JCEKS provider > should be annotated with a new attribute, "keystore" to explicitly indicate > that these properties are credential store aware. > {code} > > oozie.service.JPAService.jdbc.password > > Database Password > PASSWORD > > DB user password. > IMPORTANT: if password is emtpy leave a 1 space string, the service > trims the value, > if empty Configuration assumes it is NULL. > > > password > false > *true* > > > > {code} -- This message was sent by Atlassian JIRA (v6.3.4#6332)