Uploaded image for project: 'Spark'
  1. Spark
  2. SPARK-20379

Allow setting SSL-related passwords through env variables

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.2.0
    • Fix Version/s: 2.3.0
    • Component/s: Spark Core
    • Labels:
      None

      Description

      Currently, Spark reads all SSL options from configuration, which can be provided in a file or through the command line. This means that to set the SSL keystore / trust store / key passwords, you have to use one of those options.

      Using the command line for that is not secure, and in some environments admins prefer to not have the password written in plain text in a file (since the file and the data it's protecting could be stored in the same filesystem). So for these cases it would be nice to be able to provide these passwords through environment variables, which are not written to disk and also not readable by other users on the same machine.

        Attachments

          Activity

            People

            • Assignee:
              vanzin Marcelo Vanzin
              Reporter:
              vanzin Marcelo Vanzin
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: