Securely storing credentials in Gravitino #7227
Replies: 2 comments 7 replies
-
|
It is stored as the property now. We don't have secure store for credentials yet. If you have interest, you can improve it. |
Beta Was this translation helpful? Give feedback.
-
|
@jerqi I’ve been exploring the implementation of a feature in Apache Gravitino to securely store credentials in HashiCorp Vault. During my investigation, a few design-related questions arose that I’d like to clarify. Catalog Creation & Test Connection Ideally, should the credentials be extracted and validated at the CatalogManager layer before persisting them (along with other properties) to the database? Similarly, when creating schemas or entities (tables, filesets, etc.), should these configurations be fetched separately and verified? Externally Managed Entities & Secure Storage I’d appreciate any insights or guidance on these points, especially regarding the intended behavior for credential validation and the preferred integration strategy with HashiCorp Vault. Thanks in advance for your help! |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Hi Gravitino Community,
I had tested filesets in gravitino and is working pretty well. But the credentials I configured for s3 in the catalog is visible whenever I view the catalog details in UI. Can somebody explain to how credentials are stored in gravitino? Is there any plans for integrating external secure stores for credentials.
Beta Was this translation helpful? Give feedback.
All reactions