Attila Sasvari created OOZIE-2771: ------------------------------------- Summary: Allow retrieving keystore and truststore passwords from Hadoop Credential Provider Key: OOZIE-2771 URL: https://issues.apache.org/jira/browse/OOZIE-2771 Project: Oozie Issue Type: Improvement Reporter: Attila Sasvari
Right now passwords for keystore and truststore ({{oozie.https.keystore.pass}}, {{oozie.https.truststore.pass}}) are stored in {{oozie-site.xml}} as cleartext. However, Oozie could take advantage of the Hadoop Credential Provider for storing and retrieving that passwords similarly how the JDBC password ({{oozie.service.JPAService.jdbc.password}}) is handled today (see https://issues.apache.org/jira/browse/OOZIE-2272). This way keystore and truststore passwords could be masked in oozie-site. Note: {{ConfigurationService.getPassword}} is worth to look at. -- This message was sent by Atlassian JIRA (v6.3.4#6332)