Uploaded image for project: 'Ambari'
  1. Ambari
  2. AMBARI-8734

Create a more secure way to obtain and handle KDC administrator credentials

    XMLWordPrintableJSON

Details

    Description

      The current mechanism for obtaining and handling KDC administrator credentials is not particularly secure thus allowing any knowledgeable user to potentally gain access to them.

      A new mechanism needs to be put in place to security store this data for at least the duration of a HTTP session and potentially longer in the event Ambari allow for long-term storage of this data.

      Ideally any solution is generic enough to handle secure data of any type.

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. AMBARI-13214 Create a credentials resource used to securely set, update, and remove credentials used by Ambari

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          is related to

          Task - A task that needs to be done. AMBARI-8725 Inject Clusters object into KerberosServerAction

          • Major - Major loss of function.
          • Resolved
          relates to

          Task - A task that needs to be done. AMBARI-9014 Design admin principal session expiration handling API call

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              rlevas Robert Levas
              rlevas Robert Levas
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: