Github user dwhsys commented on the issue:
https://github.com/apache/zeppelin/pull/2145
@felixcheung @jongyoul ,
I want to discuss the problem of "false sense of security". I hope that
anyone who want to use "credentials feature" in enterprise solution will be
aware of low security while storing passwords in file (even encrypted). And I
agree with @zjffdu about temporality of this mechanism. But here we have one
obvious benefit: we do not allow someone with good intentions to see
credentials accidentally. So it may be enough reason to implement this PR. I'm
not really sure in my rationales. Waiting for your reply.
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
