atlas-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hemanth Yamijala (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (ATLAS-661) REST API Authentication
Date Mon, 09 May 2016 06:46:12 GMT

     [ https://issues.apache.org/jira/browse/ATLAS-661?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Hemanth Yamijala updated ATLAS-661:
-----------------------------------
    Attachment: ATLAS-661.4.patch

Made the assertion in {{NegativeSSLAndKerberosTest}} a little weaker than it used to be. My
reason for doing so is that we will be testing Kerberos based authentication separately and
at that time we can confirm how this test should behave in positive and negative scenarios.

I also packaged and verified some basic functionality with this patch (using file based authentication):

* Atlas UI behaves correctly once username / password is entered.
* curl fails if Atlas APIs are accessed without username / password.
* curl works correctly if Atlas APIs are accessed with right username / password (using the
-u option)
* curl fails as expected if Atlas APIs are accessed with incorrect username / password
* hive-import, quickstart and atlas_admin all take username / password as input and work /
fail if incorrect credentials are passed.

*This patch will clearly break compatibility for anyone using Atlas APIs directly. I will
send an announce email on atlas-dev soon for this.*

The diff between ATLAS-661.3.patch and ATLAS-661.4.patch is as follows:

{code}
$ diff ~/projects/hwx/atlas/patches/ATLAS-661.3.patch ~/projects/hwx/atlas/patches/ATLAS-661.4.patch
1134c1134
< index 9aac32a..6686a22 100755
---
> index 9aac32a..4d7794a 100755
1175c1175
< @@ -125,7 +127,7 @@ public class NegativeSSLAndKerberosTest extends BaseSSLAndKerberosTest
{
---
> @@ -125,7 +127,6 @@ public class NegativeSSLAndKerberosTest extends BaseSSLAndKerberosTest
{
1180d1179
< +            Assert.assertTrue(e.getMessage().contains("unable to find valid certification
path to requested target"));
{code}

Will wait a bit before commit, if anyone is interested in providing feedback.

> REST API Authentication
> -----------------------
>
>                 Key: ATLAS-661
>                 URL: https://issues.apache.org/jira/browse/ATLAS-661
>             Project: Atlas
>          Issue Type: Improvement
>    Affects Versions: 0.7-incubating
>            Reporter: Erik Bergenholtz
>            Assignee: Nixon Rodrigues
>            Priority: Critical
>             Fix For: 0.7-incubating
>
>         Attachments: ATLAS-661.2.patch, ATLAS-661.3.patch, ATLAS-661.4.patch, ATLAS-661.patch
>
>
> Atlas needs to authorize the REST API invocations; as necessary requests will be forced
to authenticate.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message