[jira] [Commented] (FLINK-38266) SQL Gateway - mask sensitive table and catalog options

Shengkai Fang (Jira) Tue, 19 Aug 2025 04:39:04 -0700


    [ 
https://issues.apache.org/jira/browse/FLINK-38266?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18014867#comment-18014867
 ]


Shengkai Fang commented on FLINK-38266:
---------------------------------------

Currently, Flink uses connection to manage the sensitve info. Please take a 
look at the FLIP: 
https://cwiki.apache.org/confluence/display/FLINK/FLIP-529%3A+Connections+in+Flink+SQL+and+TableAPI

> SQL Gateway - mask sensitive table and catalog options
> ------------------------------------------------------
>
>                 Key: FLINK-38266
>                 URL: https://issues.apache.org/jira/browse/FLINK-38266
>             Project: Flink
>          Issue Type: Improvement
>          Components: Table SQL / Gateway
>    Affects Versions: 2.0.0, 1.20.0
>            Reporter: Grzegorz Kołakowski
>            Priority: Major
>              Labels: pull-request-available
>
> The SQL Gateway exposes credentials and other sensitive information through 
> the {{SHOW CREATE TABLE}} and {{SHOW CREATE CATALOG}} statements. This 
> constitutes a security violation when the SQL Gateway is used in a multi-user 
> environment, for example, as a gateway for SQL editors with persistent 
> catalogs.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (FLINK-38266) SQL Gateway - mask sensitive table and catalog options

Reply via email to