[
https://issues.apache.org/jira/browse/HIVE-15025?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15614414#comment-15614414
]
Lefty Leverenz commented on HIVE-15025:
---------------------------------------
In the patch, *hive.metastore.truststore.path* and
*hive.metastore.keystore.path* have the same description ("Metastore SSL
certificate keystore location.")
Likewise, *hive.metastore.truststore.password* and
*hive.metastore.keystore.password* have the same description ("Metastore SSL
certificate keystore password.")
Shouldn't that be "truststore" instead of "keystore" for the truststore
configs, as in the release note?
> Secure-Socket-Layer (SSL) support for HMS
> -----------------------------------------
>
> Key: HIVE-15025
> URL: https://issues.apache.org/jira/browse/HIVE-15025
> Project: Hive
> Issue Type: Improvement
> Components: Metastore
> Affects Versions: 2.2.0
> Reporter: Aihua Xu
> Assignee: Aihua Xu
> Labels: TODOC2.2
> Fix For: 2.2.0
>
> Attachments: HIVE-15025.1.patch, HIVE-15025.2.patch,
> HIVE-15025.3.patch
>
>
> HMS server should support SSL encryption. When the server is keberos enabled,
> the encryption can be enabled. But if keberos is not enabled, then there is
> no encryption between HS2 and HMS.
> Similar to HS2, we should support encryption in both cases.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
