hadoop-hive-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Edward Capriolo (JIRA)" <j...@apache.org>
Subject [jira] Commented: (HIVE-842) Authentication Infrastructure for Hive
Date Fri, 18 Sep 2009 18:16:15 GMT

    [ https://issues.apache.org/jira/browse/HIVE-842?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12757309#action_12757309
] 

Edward Capriolo commented on HIVE-842:
--------------------------------------

hive.conf
{noformat}
<property>
  <name>hive.authenticate.class</name>
  <value>org.apache.hadoop.hive.auth.DefaultAuthenticator</value>
    <description>Use this setting to use your own authentication framework. LDAP mysql
etc
  </description>
</property>
{noformat}

{noformat}
public interface Authenticator {
  public boolean authenticate(SessionState session);
}
class DefaultAuthenticator implements Authenticator{
  public boolean authenticate(SessionState session){
    return true;
  }
}
{noformat}

Thus the authentication is plugable

{noformat}
class SharedSecretAuthenticator implements Authenticator {
   public boolean authenticate(SessionState session){
      if (session.ss.getConf().getVar("USERNAME").equals("admind") &&
          session.ss.getConf().getVar("PASSWORD").equals("secret") )
            return true;
      return false;
  }
}
{noformat}

It would be trivial to them implement LDAP, Mysql, or other types of authentication. The call
to the authenticator could be plugged in to the API anywhere a reference to the clients SessionState
exists.

> Authentication Infrastructure for Hive
> --------------------------------------
>
>                 Key: HIVE-842
>                 URL: https://issues.apache.org/jira/browse/HIVE-842
>             Project: Hadoop Hive
>          Issue Type: New Feature
>          Components: Server Infrastructure
>            Reporter: Edward Capriolo
>
> This issue deals with the authentication (user name,password) infrastructure. Not the
authorization components that specify what a user should be able to do.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message