databricks-oauth-client-secret
--databricks-oauth-client-secret is a global parameter for the Liquibase Pro Databricks extension. It specifies the Client Secret for OAuth authentication on Databricks. The Client Secret is the service principal's OAuth Secret value.
This parameter is hidden in Liquibase logs, even if --log-level is FINE. It is not exposed in the database connection URL. Instead, Liquibase uses it as a driver parameter.
Specifying this parameter is required for OAuth authentication. It is available in the Liquibase Pro Databricks extension 1.0.0 and later.
ses
You can connect Liquibase to your Databricks database using OAuth (Open Authorization). This parameter lets you specify some of your OAuth authentication details. For more guidance on authentication on Databricks, see Using Liquibase with Databricks SQL.
Syntax
You can set this parameter in the following ways:
Option | Syntax |
Liquibase properties file (defaults file) | liquibase.databricks.oauth.clientSecret: <string> |
Global flow file argument (example) | stages: Default: actions: - type: liquibase command: update globalArgs: { databricks-oauth-client-secret: <string>" } |
Global CLI parameter | liquibase --databricks-oauth-client-secret=<string>update --changelog-file=example-changelog.xml |
JVM system property JAVA_Opts Environment Variable | Unix: JAVA_OPTS=-Dliquibase.oauth.clientSecret=<string> Windows: JAVA_OPTS=-D"liquibase.oauth.clientSecret"=<string> |
Liquibase environment variables | LIQUIBASE_COMMAND_CHANGELOG_FILE=<string> |
For more information, see Working with Command Parameters.