[jira] [Commented] (KUDU-1844) /varz should not expose potentially sensitive configs

Hao Hao (JIRA) Thu, 16 Feb 2017 16:06:06 -0800

    [ 
https://issues.apache.org/jira/browse/KUDU-1844?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15870915#comment-15870915
 ]


Hao Hao commented on KUDU-1844:
-------------------------------

Code review at: https://gerrit.cloudera.org/#/c/6043/.

> /varz should not expose potentially sensitive configs
> -----------------------------------------------------
>
>                 Key: KUDU-1844
>                 URL: https://issues.apache.org/jira/browse/KUDU-1844
>             Project: Kudu
>          Issue Type: Improvement
>          Components: security, util
>    Affects Versions: 1.3.0
>            Reporter: Todd Lipcon
>            Assignee: Hao Hao
>              Labels: newbie
>
> Currently /varz dumps all configuration flags. As we add security support, 
> it's possible some flags may be sensitive such that we wouldn't want to 
> expose them via the web UI. Let's add a new FLAG_TAG(sensitive) which would 
> make /varz redact that flag.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Commented] (KUDU-1844) /varz should not expose potentially sensitive configs

Reply via email to