v.23.7New Feature
Implement Support for Encrypted Elements in Configuration File
Implement support of encrypted elements in configuration file. Added possibility to use encrypted text in leaf elements of configuration file. The text is encrypted using encryption codecs from <encryption_codecs> section. #50986 (Roman Vasin).Why it matters
This feature enables improved security by allowing sensitive configuration values to be encrypted directly within configuration files, protecting them from exposure in plaintext while still being usable by ClickHouse.How to use it
Define encryption codecs in the<encryption_codecs> section of the configuration file, then replace sensitive leaf element values with their encrypted text. ClickHouse will decrypt these values at runtime using the specified codecs.