You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@sqoop.apache.org by "Venkat Ranganathan (JIRA)" <ji...@apache.org> on 2014/10/03 05:46:33 UTC
[jira] [Updated] (SQOOP-1471) Use Hadoop CredentialProvider API to
encyrpt passwords at rest
[ https://issues.apache.org/jira/browse/SQOOP-1471?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Venkat Ranganathan updated SQOOP-1471:
--------------------------------------
Attachment: SQOOP-1471.diff.3
> Use Hadoop CredentialProvider API to encyrpt passwords at rest
> --------------------------------------------------------------
>
> Key: SQOOP-1471
> URL: https://issues.apache.org/jira/browse/SQOOP-1471
> Project: Sqoop
> Issue Type: Improvement
> Affects Versions: 1.4.4, 1.4.5
> Environment: Hadoop 2.6.0+
> Reporter: Venkat Ranganathan
> Assignee: Venkat Ranganathan
> Fix For: 1.4.6
>
> Attachments: SQOOP-1471.diff, SQOOP-1471.diff.2, SQOOP-1471.diff.3
>
>
> HADOOP-10607 introduces an API to isolate password Storage from applications. This can be used to provide the DB password in a secure fashion to Sqoop users.
> The DB passwords can be assigned an alias and stored in a keystore and the alias can be provided to Sqoop.
> Option to provide the password on the command line (using --password-alias) option can be introduced as well as enhance the secure file option that we currently have to provide a new password loader that resolves the alias from keystore.
> We need to detect the availability of the Credential Provider feature and use it and fail gracefully otherwise
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)