Uploaded image for project: 'Spark'
  1. Spark
  2. SPARK-35576

Redact the sensitive info in the result of Set command

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.6.3, 2.0.2, 2.1.3, 2.2.3, 2.3.4, 2.4.8, 3.0.2, 3.1.2, 3.2.0
    • Fix Version/s: 3.2.0, 3.1.3
    • Component/s: Security, SQL
    • Labels:
      None

      Description

      Currently, the results of following SQL queries are not redacted:
      ```
      SET [KEY];
      SET;
      ```
      For example:

      scala> spark.sql("set javax.jdo.option.ConnectionPassword=123456").show()
      +--------------------+------+
      |                 key| value|
      +--------------------+------+
      |javax.jdo.option....|123456|
      +--------------------+------+
      
      
      scala> spark.sql("set javax.jdo.option.ConnectionPassword").show()
      +--------------------+------+
      |                 key| value|
      +--------------------+------+
      |javax.jdo.option....|123456|
      +--------------------+------+
      
      
      scala> spark.sql("set").show()
      +--------------------+--------------------+
      |                 key|               value|
      +--------------------+--------------------+
      |javax.jdo.option....|              123456|
      
      

      We should hide the sensitive information and redact the query output.

        Attachments

          Activity

            People

            • Assignee:
              Gengliang.Wang Gengliang Wang
              Reporter:
              Gengliang.Wang Gengliang Wang
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: