accumulo-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (ACCUMULO-1041) Generic interface for arbitrary token handling
Date Sun, 10 Feb 2013 03:21:12 GMT

    [ https://issues.apache.org/jira/browse/ACCUMULO-1041?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13575328#comment-13575328
] 

Hudson commented on ACCUMULO-1041:
----------------------------------

Integrated in Accumulo-Trunk-Hadoop-2.0 #80 (See [https://builds.apache.org/job/Accumulo-Trunk-Hadoop-2.0/80/])
    ACCUMULO-1041 - minor packaging mishap (Revision 1444474)

     Result = FAILURE
vines : 
Files : 
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/cli/ClientOpts.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/Instance.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/ZooKeeperInstance.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/admin/SecurityOperations.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/admin/SecurityOperationsImpl.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mapred/AccumuloOutputFormat.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mapred/InputFormatBase.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mapreduce/AccumuloOutputFormat.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mapreduce/InputFormatBase.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mapreduce/lib/util/ConfiguratorBase.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mock/MockAccumulo.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mock/MockInstance.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mock/MockSecurityOperations.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/client/mock/MockUser.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/security/CredentialHelper.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/security/handler/Authenticator.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/security/handler/InsecureAuthenticator.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/security/handler/ZKAuthenticator.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/util/shell/Shell.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/util/shell/commands/PasswdCommand.java
* /accumulo/trunk/core/src/main/java/org/apache/accumulo/core/util/shell/commands/UserCommand.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/cli/TestClientOpts.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/impl/TabletLocatorImplTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapred/AccumuloFileOutputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapred/AccumuloInputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapred/AccumuloOutputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapred/AccumuloRowInputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapreduce/AccumuloFileOutputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapreduce/AccumuloInputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapreduce/AccumuloOutputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mapreduce/AccumuloRowInputFormatTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mock/MockConnectorTest.java
* /accumulo/trunk/core/src/test/java/org/apache/accumulo/core/client/mock/MockTableOperationsTest.java
* /accumulo/trunk/examples/simple/src/main/java/org/apache/accumulo/examples/simple/filedata/FileDataQuery.java
* /accumulo/trunk/examples/simple/src/test/java/org/apache/accumulo/examples/simple/filedata/ChunkInputFormatTest.java
* /accumulo/trunk/proxy/src/main/java/org/apache/accumulo/proxy/ProxyServer.java
* /accumulo/trunk/server/src/main/java/org/apache/accumulo/server/client/HdfsZooInstance.java
* /accumulo/trunk/server/src/main/java/org/apache/accumulo/server/security/SecurityConstants.java
* /accumulo/trunk/server/src/main/java/org/apache/accumulo/server/security/SecurityOperation.java
* /accumulo/trunk/server/src/main/java/org/apache/accumulo/server/security/handler/Authenticator.java
* /accumulo/trunk/server/src/main/java/org/apache/accumulo/server/security/handler/InsecureAuthenticator.java
* /accumulo/trunk/server/src/main/java/org/apache/accumulo/server/security/handler/ZKAuthenticator.java
* /accumulo/trunk/server/src/test/java/org/apache/accumulo/server/gc/TestConfirmDeletes.java
* /accumulo/trunk/server/src/test/java/org/apache/accumulo/server/master/TestMergeState.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/functional/FunctionalTest.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/functional/PermissionsTest.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/State.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/concurrent/CreateUser.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/multitable/CopyTool.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/security/ChangePass.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/security/CreateUser.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/security/SecurityFixture.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/security/WalkingSecurity.java
* /accumulo/trunk/test/src/main/java/org/apache/accumulo/test/randomwalk/sequential/MapRedVerifyTool.java
* /accumulo/trunk/test/src/test/java/org/apache/accumulo/test/MiniAccumuloClusterTest.java

                
> Generic interface for arbitrary token handling
> ----------------------------------------------
>
>                 Key: ACCUMULO-1041
>                 URL: https://issues.apache.org/jira/browse/ACCUMULO-1041
>             Project: Accumulo
>          Issue Type: Sub-task
>          Components: client
>            Reporter: John Vines
>            Assignee: John Vines
>             Fix For: 1.5.0
>
>
> [~ctubbsii], [~kturner] and I hashed out details for best approach for generic tokens
which should work both for our API and the proxy.
> # Client requests the Authenticator class name
> # Client creates instance of Authenticator, calls login(Properties)
> # Properties are used to create the appropriate Token, which implements Writable, and
return it to user.
> # Client uses principal + Token with getConnector call
> # Token is immediately serialized to be used within client api and packaged into a Credential
object
> # Credential gets sent to server via thrift
> # Principal is checked, if !SYSTEM treated as a PasswordToken, otherwise deserialized
as a class defined by the Authenticator (Writable's readFields method called on said class)
> # Token us then passed through the SecurityOperations impl as well as the authenticator
api.
> This allows the authenticator API to use their requested tokens without confusion/code
injection issues with deserialization happening for unknown token classes.
> The exact same process for token creation can also be used by the Proxy, with a Map of
properties being passed it to create a token on the proxy.
> For backward support, the ZKAuthenticator will expect a PasswordToken, which is simply
a byte array.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message