Re: Review Request 64034: Sqoop must not log database passwords

Szabolcs Vasas Mon, 27 Nov 2017 01:55:57 -0800

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/64034/
-----------------------------------------------------------


(Updated Nov. 27, 2017, 9:55 a.m.)


Review request for Sqoop.


Bugs: SQOOP-3257
    https://issues.apache.org/jira/browse/SQOOP-3257


Repository: sqoop-trunk


Description
-------

If sqoop.metastore.client.record.password property is set to true then Sqoop 
stores the database password in the metastore. The problem is that in this case 
the password can be logged by a couple of classes which needs to be avoided.


Diffs (updated)
-----

  src/docs/user/saved-jobs.txt d21df02 
  src/java/org/apache/sqoop/SqoopJobDataPublisher.java 93be02f 
  src/java/org/apache/sqoop/SqoopOptions.java 587d4e1 
  src/java/org/apache/sqoop/metastore/GenericJobStorage.java 9e1b18b 
  src/java/org/apache/sqoop/metastore/PasswordRedactor.java PRE-CREATION 
  src/java/org/apache/sqoop/tool/JobTool.java dbe8934 
  src/test/org/apache/sqoop/credentials/TestPassingSecurePassword.java bd911f2 
  src/test/org/apache/sqoop/metastore/PasswordRedactorTest.java PRE-CREATION 


Diff: https://reviews.apache.org/r/64034/diff/2/

Changes: https://reviews.apache.org/r/64034/diff/1-2/


Testing
-------

Unit tests and third party tests are executed.


Thanks,

Szabolcs Vasas

Re: Review Request 64034: Sqoop must not log database passwords

Reply via email to