Hi Jian, I already filed KYLIN-1401
<https://issues.apache.org/jira/browse/KYLIN-1401> on jira, and will submit
a patch later.

thanks
wu

On Thu, Feb 4, 2016 at 9:11 AM, ShaoFeng Shi <[email protected]> wrote:

> Hi Xiang, thanks for reporting this, and your suggestion is good, we
> should improve it in both document and the tool.
>
> 2016-02-04 0:51 GMT+08:00 Jian Zhong <[email protected]>:
>
>> user can use this to generate encoded password, would appreciate it if
>> you can create a jira and contribute any cli tool to improve this, thanks
>>
>> On Thu, Feb 4, 2016 at 12:49 AM, Jian Zhong <[email protected]>
>> wrote:
>>
>>> PasswordPlaceholderConfigurer#encrypt will get right password.
>>>
>>> from PasswordPlaceholderConfigure#resolvePlaceholder you can see any
>>> placeholder with 'password' need encrypt.
>>>
>>> On Wed, Feb 3, 2016 at 10:01 PM, Wu XIANG <[email protected]> wrote:
>>>
>>>> thanks jian,
>>>>
>>>>   I managed to integrate LDAP by invoke "PasswordPlaceholderConfigurer#
>>>> encrypt" to encrypt my passwords. I'm not sure if it's the correct way.
>>>>
>>>>   If encryption is needed, is it possible to expose "
>>>> PasswordPlaceholderConfigurer#encrypt" as a CLI tool or just make "
>>>> PasswordPlaceholderConfigurer#key" configurable ?
>>>>
>>>> thanks
>>>> wu
>>>>
>>>>
>>>> On Wed, Feb 3, 2016 at 8:38 PM, Jian Zhong <[email protected]>
>>>> wrote:
>>>>
>>>>> Will update to doc,thank you
>>>>>
>>>>>
>>>>> On Wednesday, February 3, 2016, Jian Zhong <[email protected]>
>>>>> wrote:
>>>>>
>>>>>> Yes, encrypted is required.
>>>>>>
>>>>>>
>>>>>>
>>>>>> On Wednesday, February 3, 2016, Wu XIANG <[email protected]> wrote:
>>>>>>
>>>>>>> Hi all,
>>>>>>>
>>>>>>>    I'm configuring LDAP integration for Kylin. However, I got the
>>>>>>> following error when I start Kylin server:
>>>>>>>
>>>>>>> *"Invalid bean definition with name 'ldapSource' defined in class
>>>>>>> path resource [kylinSecurity.xml]: Input length must be multiple of 16 
>>>>>>> when
>>>>>>> decrypting with padded cipher"*
>>>>>>>
>>>>>>>    After a little bit of digging, I found this was due to "
>>>>>>> *PasswordPlaceholderConfigurer*", which tries to decrypt passwords
>>>>>>> in kylin.properties file. Does this mean passwords like "
>>>>>>> ldap.password" in kylin.properties should be encrypted ? If so, I
>>>>>>> hope it's documented in tutorial.
>>>>>>>
>>>>>>>   // PasswordPlaceholderConfigurer.java:Line71
>>>>>>>
>>>>>>> protected String resolvePlaceholder(String placeholder, Properties
>>>>>>> props) {
>>>>>>>
>>>>>>>   if (placeholder.toLowerCase().contains("password")) {
>>>>>>>
>>>>>>>       return decrypt(props.getProperty(placeholder));
>>>>>>>
>>>>>>>   } else {
>>>>>>>
>>>>>>>       return props.getProperty(placeholder);
>>>>>>>
>>>>>>>   }
>>>>>>>
>>>>>>> }
>>>>>>>
>>>>>>>
>>>>>>> p.s.
>>>>>>>
>>>>>>> Kylin Branch: v1.2-release
>>>>>>>
>>>>>>>
>>>>>>> thanks
>>>>>>> *wu*
>>>>>>>
>>>>>>
>>>>
>>>>
>>>> --
>>>>
>>>> *wu*
>>>>
>>>
>>>
>>
>
>
> --
> Best regards,
>
> Shaofeng Shi
>
>


-- 

*wu*

Reply via email to