[
https://issues.apache.org/jira/browse/HADOOP-10904?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14079875#comment-14079875
]
Larry McCay commented on HADOOP-10904:
--------------------------------------
Hi [~tucu00] - that was something that was discussed early on in development of
the credential provider api in HADOOP-10607 and it was decided that it would be
better to just add the getPassword method that basically does the same thing
without adding additional properties.
If you look at the getPassword method you will see that:
1. if there is no provider.path defined for credential providers then it
fallsback to config
2. if there is alias of the provided name then it fallsback to config
3. it is possible to turn off the fallback for deployments where it isn't
acceptable to have passwords in config
I think the deprecation warning may be interesting as a separate jira. I
haven't actually proposed that we deprecate the existing mechanisms - that may
need some additional discussion.
What do you think?
> Provide Alt to Clear Text Passwords through Cred Provider API
> -------------------------------------------------------------
>
> Key: HADOOP-10904
> URL: https://issues.apache.org/jira/browse/HADOOP-10904
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Reporter: Larry McCay
> Assignee: Larry McCay
>
> This is an umbrella jira to track various child tasks to uptake the
> credential provider API to enable deployments without storing
> passwords/credentials in clear text.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
