You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@hive.apache.org by "Slim Bouguerra (Jira)" <ji...@apache.org> on 2019/11/05 16:44:00 UTC
[jira] [Commented] (HIVE-21894) Hadoop credential password storage
for the Kafka Storage handler when security is SSL
[ https://issues.apache.org/jira/browse/HIVE-21894?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16967669#comment-16967669 ]
Slim Bouguerra commented on HIVE-21894:
---------------------------------------
[~kristopherkane] did you take a look at this work https://issues.apache.org/jira/browse/HIVE-20651
it is doing very similar thing.
FYI did not look at the PR yet, hope will get to it ASAP.
Thanks
> Hadoop credential password storage for the Kafka Storage handler when security is SSL
> -------------------------------------------------------------------------------------
>
> Key: HIVE-21894
> URL: https://issues.apache.org/jira/browse/HIVE-21894
> Project: Hive
> Issue Type: Improvement
> Components: kafka integration
> Affects Versions: 4.0.0
> Reporter: Kristopher Kane
> Assignee: Kristopher Kane
> Priority: Minor
> Labels: pull-request-available
> Fix For: 4.0.0
>
> Time Spent: 10m
> Remaining Estimate: 0h
>
> The Kafka storage handler assumes that if the Hive service is configured with Kerberos then the destination Kafka cluster is also secured with the same Kerberos realm or trust of realms. The security configuration of the Kafka client can be overwritten due to the additive operations of the Kafka client configs, but, the only way to specify SSL and the keystore/truststore user/pass is via plain text table properties.
> This ticket proposes adding Hadoop credential security to the Kafka storage handler in support of SSL secured Kafka clusters.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)