[ https://issues.apache.org/jira/browse/HBASE-11810?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14115595#comment-14115595 ]
Hudson commented on HBASE-11810: -------------------------------- SUCCESS: Integrated in HBase-1.0 #138 (See [https://builds.apache.org/job/HBase-1.0/138/]) HBASE-11810 Access SSL Passwords through Credential Provider API (Larry McCay) (apurtell: rev 51cf5c359b47a43780f86e5302128dd5bc324620) * hbase-server/src/main/java/org/apache/hadoop/hbase/rest/RESTServer.java * hbase-common/src/main/java/org/apache/hadoop/hbase/HBaseConfiguration.java * hbase-common/src/test/java/org/apache/hadoop/hbase/TestHBaseConfiguration.java > Access SSL Passwords through Credential Provider API > ---------------------------------------------------- > > Key: HBASE-11810 > URL: https://issues.apache.org/jira/browse/HBASE-11810 > Project: HBase > Issue Type: Improvement > Components: security > Reporter: Larry McCay > Assignee: Larry McCay > Fix For: 0.99.0, 2.0.0, 0.98.6 > > Attachments: HBASE_11810-2.patch, HBASE_11810.patch > > > HADOOP-10607 introduced the credential provider API for allowing passwords > and other sensitive configuration items to be stored in an external provider. > RESTServer is accessing passwords stored in clear text in Configuration > through the standard get() method. By using the new Configuration.getPassword > method instead, the credential provider API will be checked first then fall > back to clear text - when allowed. -- This message was sent by Atlassian JIRA (v6.2#6252)