You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@druid.apache.org by GitBox <gi...@apache.org> on 2019/12/11 01:17:36 UTC

[GitHub] [incubator-druid] jon-wei commented on issue #8658: [Lookup] LookupExtractorFactoryMapContainer will cause jdbc password leak issue

jon-wei commented on issue #8658: [Lookup] LookupExtractorFactoryMapContainer will cause jdbc password leak issue
URL: https://github.com/apache/incubator-druid/issues/8658#issuecomment-564333461
 
 
   @FaxianZhao Are you using a DefaultPasswordProvider? If so, even if the Coordinator used `LookupExtractorFactoryContainer` instead of `LookupExtractorFactoryMapContainer`, the `DefaultPasswordProvider` would still get serialized and the password would be visible.
   
   You could consider using an EnvironmentPasswordProvider instead, so the password doesn't appear in the spec

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@druid.apache.org
For additional commands, e-mail: commits-help@druid.apache.org