Github user StephanEwen commented on a diff in the pull request:
https://github.com/apache/flink/pull/2425#discussion_r86543731
--- Diff: docs/internals/flink_security.md ---
@@ -28,14 +28,16 @@ This document briefly describes how Flink security
works in the context of vario
and the connectors that participates in Flink Job execution stage. This
documentation can be helpful for both administrators and developers
--- End diff --
This document should probably start with an introduction to the different
aspects of security:
- Authentication (Flink authenticates at other services)
- Authorization (No one unauthorized access the Flink cluster)
- Encryption (no sniffing off data and credentials)
Authorization alone is probably only meaningful to prevent "accidental
mixups", all meaningfully secure setups would need Authorization and Encryption
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
