You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hawq.apache.org by "Michael Andre Pearce (IG) (JIRA)" <ji...@apache.org> on 2017/05/11 22:26:04 UTC

[jira] [Created] (HAWQ-1462) JDBC-PXF - support configuration by config file

Michael Andre Pearce (IG) created HAWQ-1462:
-----------------------------------------------

             Summary: JDBC-PXF - support configuration by config file
                 Key: HAWQ-1462
                 URL: https://issues.apache.org/jira/browse/HAWQ-1462
             Project: Apache HAWQ
          Issue Type: Sub-task
          Components: PXF
            Reporter: Michael Andre Pearce (IG)
            Assignee: Vineet Goel


The example has the username and password in the connection string.
LOCATION ('pxf://localhost:51200/demodb.myclass'
'?PROFILE=JDBC'
'&JDBC_DRIVER=com.mysql.jdbc.Driver'
'&DB_URL=jdbc:mysql://192.168.200.6:3306/demodb&USER=root&PASS=root'
)
This creates security issue because anyone that can connect to the database will be able to see the username and password of the JDBC connection.
I suggest changing the URL to a connection profile that points to a file outside of the database. For Greenplum database and S3, the LOCATION syntax includes "config=/path/to/config_file". The config_file contains the S3 credentials. This seems like a good pattern to follow here too.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)