accumulo-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From vi...@apache.org
Subject svn commit: r1482154 - in /accumulo/trunk: ./ docs/src/main/latex/accumulo_user_manual/chapters/security.tex
Date Mon, 13 May 2013 23:57:19 GMT
Author: vines
Date: Mon May 13 23:57:18 2013
New Revision: 1482154

URL: http://svn.apache.org/r1482154
Log:
 ACCUMULO-992 - Forgot to save a file before committing



Modified:
    accumulo/trunk/   (props changed)
    accumulo/trunk/docs/src/main/latex/accumulo_user_manual/chapters/security.tex

Propchange: accumulo/trunk/
------------------------------------------------------------------------------
  Merged /accumulo/branches/1.5:r1482153

Modified: accumulo/trunk/docs/src/main/latex/accumulo_user_manual/chapters/security.tex
URL: http://svn.apache.org/viewvc/accumulo/trunk/docs/src/main/latex/accumulo_user_manual/chapters/security.tex?rev=1482154&r1=1482153&r2=1482154&view=diff
==============================================================================
--- accumulo/trunk/docs/src/main/latex/accumulo_user_manual/chapters/security.tex (original)
+++ accumulo/trunk/docs/src/main/latex/accumulo_user_manual/chapters/security.tex Mon May
13 23:57:18 2013
@@ -139,12 +139,15 @@ deprecation cycle.
 Authentication simply handles the ability for a user to verify their integrity. A combination
of 
 principal and authentication token are used to verify a user is who they say they are. An

 authentication token should be constructed, either directly through it's constructor, but
it is 
-advised to use the init(Property) method to populate an authentication token. Once a user
is 
-authenticated by the Authenticator, the user has access to the other actions within Accumulo.
All 
-actions in Accumulo are ACLed, and this ACL check is handled by the Permission Handler. This
is what 
-manages all of the permissions, which are divided in system and per table level. From there,
if a 
-user is doing an action which requires authorizations, the Authorizor is queried to determine
what 
-authorizations the user has.
+advised to use the init(Property) method to populate an authentication token. It is expected
that a 
+user knows what the appropriate token to use for their system is. The default token is 
+PasswordToken. 
+
+Once a user is authenticated by the Authenticator, the user has access to the other actions
within 
+Accumulo. All actions in Accumulo are ACLed, and this ACL check is handled by the Permission

+Handler. This is what manages all of the permissions, which are divided in system and per
table 
+level. From there, if a user is doing an action which requires authorizations, the Authorizor
is 
+queried to determine what authorizations the user has.
 
 This setup allows a variety of different mechanisms to be used for handling different aspects
of 
 Accumulo's security. A system like Kerberos can be used for authentication, then a system
like LDAP 



Mime
View raw message