Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-1429

HadoopAuthFilter avoid logging sensitive values

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 0.7.0
    • Fix Version/s: 1.2.0
    • Component/s: None
    • Labels:
      None

      Description

      When initializing the HadoopAuthProvider each of the properties in the provider config is logged as INFO.

      For certain deployments, this may contain sensitive information.

      We should move this to DEBUG level and potentially scrub the properties for properties that we know to be sensitive.

        Attachments

        1. KNOX-1429.patch
          3 kB
          Kevin Risden

          Activity

            People

            • Assignee:
              krisden Kevin Risden
              Reporter:
              lmccay Larry McCay
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: