ambari-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Lars Francke (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AMBARI-17715) Not able to login using KnoxSSO if local/ldap Ambari User with same name exists
Date Fri, 28 Apr 2017 15:06:04 GMT

    [ https://issues.apache.org/jira/browse/AMBARI-17715?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15988964#comment-15988964
] 

Lars Francke commented on AMBARI-17715:
---------------------------------------

I'm stumbling across this now. A few questions:

* You're ignoring a Test without adding any comment. Why? [~rlevas] commented that you didn't
have time but why was there any time pressure? Could you file a follow-up to enable the Test
again? It's really hard to understand what was going on without the context :(
* You removed the part that creates users in the local DB. How will users ever be added to
the local DB so I can give them roles and permissions now? I'm probably missing something
but the whole JWT/SSO thing is undocumented so I hope you can help me.

Thank you!

> Not able to login using KnoxSSO if local/ldap Ambari User with same name exists
> -------------------------------------------------------------------------------
>
>                 Key: AMBARI-17715
>                 URL: https://issues.apache.org/jira/browse/AMBARI-17715
>             Project: Ambari
>          Issue Type: Bug
>          Components: ambari-server
>    Affects Versions: 2.4.0
>            Reporter: Myroslav Papirkovskyi
>            Assignee: Myroslav Papirkovskyi
>            Priority: Blocker
>             Fix For: 2.4.0
>
>
> Due to API limitations we cannot login JWT user if LDAP/LOCAL one with same name already
exists.
> We should temporary threat JWT users as LDAP ones and rely on ldap-sync process for user
creation, as this is most frequent configuration.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

Mime
View raw message