Mailing-List: contact commits-help@cassandra.apache.org; run by ezmlm
Precedence: bulk
Reply-To: dev@cassandra.apache.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Apache Wiki <wikidiffs@apache.org>
To: Apache Wiki <wikidiffs@apache.org>
Date: Thu, 27 Oct 2011 01:11:29 -0000
Message-ID: <20111027011129.32851.62621@eos.apache.org>
Subject: 
 =?utf-8?q?=5BCassandra_Wiki=5D_Update_of_=22SimpleAuthenticator=22_by_Dav?=
 =?utf-8?q?eBrosius?=
Auto-Submitted: auto-generated

Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Cassandra Wiki" for=
 change notification.

The "SimpleAuthenticator" page has been changed by DaveBrosius:
http://wiki.apache.org/cassandra/SimpleAuthenticator?action=3Ddiff&rev1=3D1=
&rev2=3D2

Comment:
update to how the SimpleAuthenticator works in 1.0.0

- SimpleAuthenticator is a authenticator provided with Cassandra.
+ Cassandra uses a simple and pluggable authentication and authorization mo=
del using the
+ supplied interfaces:
+ =

+ {{{
+ org.apache.cassandra.auth.IAuthenticator.java
+ org.apache.cassandra.auth.IAuthority.java
+ }}}
+ =

+ Out of the box Cassandra ships with a promiscuous implementation that all=
ows all access to all
+ users without the need to log in. If you want to increase the security be=
yond this you are free to
+ implement the above interfaces to provide whatever security mechanisms yo=
u like.
+ =

+ In the source distribution there is a simple example of authentication an=
d authorization based
+ on entries in properties files. This implementation is not provided with =
the binary distribution
+ as it may not provide a level of security that is adequate for your needs=
. However, you can use
+ these examples for your own implementations. This example is found in the=
 examples directory, in the
+ package
+ =

+ {{{
+ org.apache.cassandra.auth.SimpleAuthenticator.java
+ }}}
+ =

+ To use this implementation, move the classes to the cassandra source tree=
, and recompile the jars
+ with their inclusion. Then move the example property files
+ {{{
+ access.properties
+ passwd.properties
+ }}}
+ to your conf directory. You can refer to these files for the format neede=
d by the SimpleAuthenticator class.
+ =

  You enable it by adding
  {{{
-   <Authenticator>org.apache.cassandra.auth.SimpleAuthenticator</Authentic=
ator>
+ authenticator: org.apache.cassandra.auth.SimpleAuthenticator
+ authority: org.apache.cassandra.auth.SimpleAuthority
  }}}
- in conf/storage-conf.xml. If no <Authenticator> is specified, the default
- is org.apache.cassandra.auth.AllowAllAuthenticator
+ in conf/cassandra.yaml
+ If no <Authenticator> is specified, the default is org.apache.cassandra.a=
uth.AllowAllAuthenticator
  =

  If you use SimpleAuthenticator you should also update
  bin/cassandra.in.sh to specify additional properties which point to the
  location of your authentication files.
  Add the following to the JVM_OPTS  (e.g. before the -Dcom.sun.management.=
jmxremote.port setting):
  {{{
-         -Dpasswd.properties=3D/usr/local/apache-cassandra-0.6.6/conf/pass=
wd.properties \
+         -Dpasswd.properties=3D/usr/local/apache-cassandra-1.0.0/conf/pass=
wd.properties \
-         -Daccess.properties=3D/usr/local/apache-cassandra-0.6.6/conf/acce=
ss.properties \
+         -Daccess.properties=3D/usr/local/apache-cassandra-1.0.0/conf/acce=
ss.properties \
  }}}
  =

  (Alter the paths to the configuration files depending on where placed the=
 files.)
  =

- See the sample passwd.properties and access.properties files in the conf =
directory.
-=20