Use headers instead of URL params for ClickHouse credentials #7255
Conversation
|
@susodapop could you perhaps take a look? |
There was a problem hiding this comment.
I haven't contributed to redash in a few years but this PR looks safe to me. It's consistent with the clickhouse docs and should thus be safe (i.e. not niche).
Be sure to update the release notes to let Clickhouse users know about this change but I don't imagine this will be a breaking change for Clickhouse users.
martijnthe
force-pushed
the
clickhouse-use-auth-headers
branch
from
c4c4ea8 to
8fb45a7
Compare
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #7255 +/- ##
=======================================
Coverage 64.01% 64.02%
=======================================
Files 163 163
Lines 13410 13411 +1
Branches 1905 1905
=======================================
+ Hits 8585 8586 +1
Misses 4490 4490
Partials 335 335
|
martijnthe
force-pushed
the
clickhouse-use-auth-headers
branch
from
8fb45a7 to
30362ca
Compare
@susodapop where should I update the release notes? The CHANGELOG file seems very outdated. I did find release notes here, but I'm not sure if I'm supposed to edit that? Can you merge this PR? I cannot, even though you approved it already. |
@arikfr could you perhaps provide guidance? Thank you very much! |
What type of PR is this?
Description
The ClickHouse driver was passing the credentials via URL query parameters.
This not a good practice because URLs tend to get included in logs.
This PR changes this to use the
x-clickhouse-userandx-clickhouse-keyheaders instead.How is this tested?
Add a ClickHouse DB as datasource. Observe connecting and querying still works as before.
Related Tickets & Documents
N/A
Mobile & Desktop Screenshots/Recordings (if there are UI changes)
N/A