[jira] [Commented] (HDFS-17873) Use a password retrieval method (e.g. conf.getPassword) in HikariDataSourceConnectionFactory and MySQLStateStoreHikariDataSourceConnectionFactory, similar to HttpServer2

Thu, 29 Jan 2026 18:33:07 -0800 


    [ 
https://issues.apache.org/jira/browse/HDFS-17873?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18055323#comment-18055323
 ] 

ASF GitHub Bot commented on HDFS-17873:
---------------------------------------

aajisaka commented on PR #8204:
URL: https://github.com/apache/hadoop/pull/8204#issuecomment-3821438508

   Merged the commit into trunk. Thank you @LamiumAmplexicaule for your first 
contribution to Apache Hadoop!




> Use a password retrieval method (e.g. conf.getPassword) in 
> HikariDataSourceConnectionFactory and 
> MySQLStateStoreHikariDataSourceConnectionFactory, similar to HttpServer2
> -------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: HDFS-17873
>                 URL: https://issues.apache.org/jira/browse/HDFS-17873
>             Project: Hadoop HDFS
>          Issue Type: Improvement
>          Components: rbf, security
>    Affects Versions: 3.4.2
>            Reporter: Hiroki Egawa
>            Priority: Major
>              Labels: pull-request-available
>
> Currently, HikariDataSourceConnectionFactory and 
> MySQLStateStoreHikariDataSourceConnectionFactory do not use conf.getPassword 
> for retrieving passwords, unlike HttpServer2.
> In HttpServer2, passwords are retrieved via conf.getPassword, which supports 
> both plain-text configuration values and secure credential providers in a 
> unified and secure manner.
> This ticket proposes the following changes:
>  * Introduce a password retrieval mechanism equivalent to conf.getPassword in 
> HikariDataSourceConnectionFactory
>  * Apply the same mechanism to 
> MySQLStateStoreHikariDataSourceConnectionFactory
> Expected Outcome
>  * Secure credential providers can be used instead of plain-text passwords in 
> HikariDataSourceConnectionFactory and 
> MySQLStateStoreHikariDataSourceConnectionFactory



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to