Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Minor
Fix Version/s: 0.8.0.Beta1
Affects Version/s: None
Component/s: core-library
Labels:
None

Git Pull Request:
https://github.com/debezium/docker-images/pull/85, https://github.com/debezium/debezium/pull/529

SFDC Cases Counter:
SFDC Cases Links:

Using debezium 7.5 connect docker image, setting these env variables to configure credentials for secured kafka brokers:

CONNECT_SASL_JAAS_CONFIG=org.apache.kafka.common.security...
CONNECT_CONSUMER_SASL_JAAS_CONFIG=org.apache.kafka.common.security...
CONNECT_PRODUCER_SASL_JAAS_CONFIG=org.apache.kafka.common.security...

In the container output log there are rows with plaintext passwords printed out.

For example:
{{--- Setting property from CONNECT_SASL_JAAS_CONFIG: sasl.jaas.config=org.apache.kafka.common... full jaas conf in plaintext!
}}

Note that some messages already have jaas config hidden, like this
{{sasl.jaas.config = [hidden] }}

is related to

DBZ-861 Sensitive vars CONNECT_CONSUMER_SASL_JAAS_CONFIG and CONNECT_PRODUCER_SASL_JAAS_CONFIG are printed to the log

Closed

Assignee:: Jiri Pechanec

Reporter:: Eero Koplimets (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2018/05/24 8:58 AM

Updated:: 2022/09/09 7:09 AM

Resolved:: 2018/08/16 12:26 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates