Chris Nauroth created HADOOP-12520:
--------------------------------------
Summary: Use XInclude in hadoop-azure test configuration to
isolate Azure Storage account keys for service integration tests.
Key: HADOOP-12520
URL: https://issues.apache.org/jira/browse/HADOOP-12520
Project: Hadoop Common
Issue Type: Improvement
Components: azure, test
Reporter: Chris Nauroth
Assignee: Chris Nauroth
The hadoop-azure tests support execution against the live Azure Storage service
if the developer specifies the key to an Azure Storage account. The
configuration works by overwriting the src/test/resources/azure-test.xml file.
This can be an error-prone process. The azure-test.xml file is checked into
revision control to show an example. There is a risk that the tester could
overwrite azure-test.xml containing the keys and then accidentally commit the
keys to revision control. This would leak the keys to the world for potential
use by an attacker. This issue proposes to use XInclude to isolate the keys
into a separate file, ignored by git, which will never be committed to revision
control. This is very similar to the setup already used by hadoop-aws for
integration testing.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
