accumulo-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Keith Turner (JIRA)" <>
Subject [jira] [Commented] (ACCUMULO-996) explore exposing accumulo token in proxy
Date Mon, 28 Jan 2013 18:33:14 GMT


Keith Turner commented on ACCUMULO-996:

What do people think about doing the following in the proxy instead of always passing user


   struct ProxyToken {
      long token;

   ProxyToken authenticateUserPass(UserPass up);
   ProxyToken authenticateKerberose(KerberoseToken kt);

    i32 addConstraint (1:ProxyToken token, 2:string tableName, 3:string constraintClassName)


This would allow the proxy to use different authetication mechanisms.  The token woudl be
transient, generated using secure random, and time out when inactive.

> explore exposing accumulo token in proxy
> ----------------------------------------
>                 Key: ACCUMULO-996
>                 URL:
>             Project: Accumulo
>          Issue Type: Sub-task
>          Components: proxy
>            Reporter: Keith Turner
>            Assignee: Eric Newton
>             Fix For: 1.5.0
> with the new security related changes for 1.5, do the new authentication mechanism need
to be exposed in the proxy?

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message