You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@hawq.apache.org by "Michael Andre Pearce (IG) (JIRA)" <ji...@apache.org> on 2017/05/11 22:26:04 UTC
[jira] [Created] (HAWQ-1462) JDBC-PXF - support configuration by
config file
Michael Andre Pearce (IG) created HAWQ-1462:
-----------------------------------------------
Summary: JDBC-PXF - support configuration by config file
Key: HAWQ-1462
URL: https://issues.apache.org/jira/browse/HAWQ-1462
Project: Apache HAWQ
Issue Type: Sub-task
Components: PXF
Reporter: Michael Andre Pearce (IG)
Assignee: Vineet Goel
The example has the username and password in the connection string.
LOCATION ('pxf://localhost:51200/demodb.myclass'
'?PROFILE=JDBC'
'&JDBC_DRIVER=com.mysql.jdbc.Driver'
'&DB_URL=jdbc:mysql://192.168.200.6:3306/demodb&USER=root&PASS=root'
)
This creates security issue because anyone that can connect to the database will be able to see the username and password of the JDBC connection.
I suggest changing the URL to a connection profile that points to a file outside of the database. For Greenplum database and S3, the LOCATION syntax includes "config=/path/to/config_file". The config_file contains the S3 credentials. This seems like a good pattern to follow here too.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)