[HIVE-21894] Hadoop credential password storage for the Kafka Storage handler when security is SSL - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 4.0.0
Fix Version/s: 4.0.0-alpha-1
Component/s: kafka integration
Labels:
- pull-request-available

Description

The Kafka storage handler assumes that if the Hive service is configured with Kerberos then the destination Kafka cluster is also secured with the same Kerberos realm or trust of realms. The security configuration of the Kafka client can be overwritten due to the additive operations of the Kafka client configs, but, the only way to specify SSL and the keystore/truststore user/pass is via plain text table properties.

This ticket proposes adding Hadoop credential security to the Kafka storage handler in support of SSL secured Kafka clusters.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HIVE-21894.1.patch
13/Feb/20 20:36
18 kB
Justin Leet
HIVE-21894.2.patch
17/Feb/20 15:08
22 kB
Justin Leet

Issue Links

links to

GitHub Pull Request #839

Activity

People

Assignee:: Justin Leet

Reporter:: Kristopher Kane

Votes:: 1 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 19/Jun/19 16:13

Updated:: 17/Nov/22 08:50

Resolved:: 11/Jun/20 19:09

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

50m