[KYLIN-5569] Support manually setting ssh encrypted password when enable Job multi-live - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 5.0-alpha
Fix Version/s: 5.0-beta
Component/s: Job Engine, Security
Labels:
None

Description

In some scenarios, users hope that the password set in properties file should be encrypted, to avoid the potential security issues.

So it's great for Kylin to supply such an approach. After changes, we could config the password as the folloing:

配置项加密： kylin.job.ssh-password=ENC('${encrypted_password}')
举例：
输入：${KYLIN_HOME}/bin/kylin.sh io.kyligence.kap.tool.general.CryptTool -e AES -s kylin
输出：AES encrypted password is:
YeqVr9MakSFbgxEec9sBwg==

// Sample
kylin.server.leader-race.heart-beat-timeout=60
kylin.server.leader-race.heart-beat-interval=30
kylin.job.ssh-username=quard
kylin.job.ssh-password=ENC('k7lRPO1yqWRgtR09uG+F2w==')
#kylin.job.ssh-password=PlainTextPassWord

Attachments

Activity

People

Assignee:: Guangyuan Feng

Reporter:: Guangyuan Feng

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 08/Jun/23 04:02

Updated:: 14/Jun/23 02:25

Resolved:: 14/Jun/23 02:25