Details
-
Bug
-
Status: Closed
-
Critical
-
Resolution: Fixed
-
4.1.0, 4.0.1
-
None
-
None
-
All
Description
Users have complained that oozie logging the password related argument values in the launcher log is a security hole and want it to be masked in the output. Even password aliases in keystore are considered to be a security hole.
The fix is to mask any argument values if option name contains the string password (which is true for Sqoop). We do this in multiple places, in Sqoop main, in Launcher Mapper, in JavaMain as well.
Attachments
Attachments
Issue Links
- breaks
-
OOZIE-2749 Logging command arguments fails in certain scenarios when using EL functions.
- Resolved
-
OOZIE-2748 NPE in LauncherMapper.printArgs()
- Closed