accumulo-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jonathan Wonders (JIRA)" <j...@apache.org>
Subject [jira] [Created] (ACCUMULO-4338) VisibilityConstraint performs Duplicative Authentication Checks
Date Thu, 09 Jun 2016 20:33:21 GMT
Jonathan Wonders created ACCUMULO-4338:
------------------------------------------

             Summary: VisibilityConstraint performs Duplicative Authentication Checks
                 Key: ACCUMULO-4338
                 URL: https://issues.apache.org/jira/browse/ACCUMULO-4338
             Project: Accumulo
          Issue Type: Improvement
          Components: tserver
    Affects Versions: 1.7.1, 1.7.0, 1.6.5
            Reporter: Jonathan Wonders
            Priority: Minor


The VisibilityEvaluator created by the VisibilityConstraint uses the tablet server's SecurityOperations
to determine if the user has authorizations for tokens within the visibility expression. 
This results in an authentication check per token that is evaluated and can lead to the following
performance issues.

* flooding of audit logs since each authentication check produces an audit message
* excessive object creation due to deserialization of user credentials for each authentication
check
* mild contention between client pool threads over the ZooCache
 




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message