On Thu, Aug 3, 2017 at 10:32 AM, Steve Loughran <ste...@hortonworks.com> wrote:
> If there are places where this is still happening, I'd like to know -an > email with the logs is fine. I know you can't stop it if you put the > secrets inline, but if you do the secrets properly, they should never be > visible. (which doesn't help diagnostics, not at all) > If we agree to cutting support completely in 3.0, we could change the > message in 2.8.2+ to "this will go away" and include a wiki link to how to > prepare for this > Some of our users do use URLs with the credentials inline. Some places I have seen it are in the distcp logs and the Oozie console . Should we stop printing the URLs or perhaps stripping the secrets at all those end-points? I think using credential caches are a lot better. I agree with cutting support for it completely in 3.0 and your suggestion for the wiki link. Unless someone has better ideas? Cheers Ravi
