GitHub user jerryshao opened a pull request:
https://github.com/apache/spark/pull/21548
[SPARK-24518] Using Hadoop credential provider API to store password
## What changes were proposed in this pull request?
Current Spark configs password in a plaintext way, like putting in the
configuration file or adding as a launch arguments, sometimes such
configurations like SSL password is configured by cluster admin, which should
not be seen by user, but now this passwords are world readable to all the users.
Hadoop credential provider API support storing password in a secure way, in
which Spark could read it in a secure way, so here propose to add support of
using credential provider API to get password.
## How was this patch tested?
Existing tests and verified locally.
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/jerryshao/apache-spark SPARK-24518
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/spark/pull/21548.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #21548
----
commit 575152bc01ecd9ab9fcbdef8c03d1fed714d7c53
Author: jerryshao <sshao@...>
Date: 2018-06-13T05:01:40Z
Using Hadoop credential provider API to store password
Change-Id: Ie774eeb9376f8b5d7379f1976826e12e9c529be3
----
---
---------------------------------------------------------------------
To unsubscribe, e-mail: reviews-unsubscr...@spark.apache.org
For additional commands, e-mail: reviews-h...@spark.apache.org
