accumulo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "John Vines (Issue Comment Edited) (JIRA)" <j...@apache.org>
Subject [jira] [Issue Comment Edited] (ACCUMULO-259) ZKAuthentictor needs to be split up
Date Tue, 10 Jan 2012 00:16:39 GMT

    [ https://issues.apache.org/jira/browse/ACCUMULO-259?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13182946#comment-13182946
] 

John Vines edited comment on ACCUMULO-259 at 1/10/12 12:14 AM:
---------------------------------------------------------------

Thought I made a ticket for this, but closest I can find is the comment in ACCUMULO-238 .
This is step one. Step two is to do as you described- seperate the 'authority provider' from
the 'authenticator'. This way we can let users authenticate against one system that may or
may not be able of holding credentials. So, as you said, they could authenticate against one
system and then use zookeeper for their various credentials. This still leaves us with the
issue of coming up with a versatile interfaces that provides enough information for most providers.
Also, should this be a seperate ticket, or just one large operation?

And I agree on the errors.
                
      was (Author: jvines):
    Thought I made a ticket for this, but closest I can find is the comment in ACCUMULO-238
. This is step one. Step two is to do as you described- seperate the 'authority provider'
from the 'authenticator'. This way we can let users authenticate against one system that may
or may not be able of holding credentials. So, as you said, they could authenticate against
one system and then use zookeeper for their various credentials.

And I agree on the errors.
                  
> ZKAuthentictor needs to be split up
> -----------------------------------
>
>                 Key: ACCUMULO-259
>                 URL: https://issues.apache.org/jira/browse/ACCUMULO-259
>             Project: Accumulo
>          Issue Type: Improvement
>          Components: master, tserver
>            Reporter: John Vines
>            Assignee: Eric Newton
>
> Currently the ZKAuthenticator does both the checking of credentials as well as the functionality
of the Authenticator. We need to split those into two different classes for improved testing
as well as pluggability of the security scheme.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message