zookeeper-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Patrick Hunt (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (ZOOKEEPER-2433) ZooKeeperSaslServer: allow user principals in subject
Date Thu, 02 Jun 2016 15:56:59 GMT

    [ https://issues.apache.org/jira/browse/ZOOKEEPER-2433?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15312526#comment-15312526
] 

Patrick Hunt commented on ZOOKEEPER-2433:
-----------------------------------------

This issue sounds very much like (same as?) HADOOP-10183 - I see some discussion there about
backward compatibility support. Is that something we need to consider here? How do the two
approaches compare?

> ZooKeeperSaslServer: allow user principals in subject
> -----------------------------------------------------
>
>                 Key: ZOOKEEPER-2433
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-2433
>             Project: ZooKeeper
>          Issue Type: Improvement
>          Components: security
>    Affects Versions: 3.5.1
>            Reporter: Andy B
>            Assignee: Andy B
>              Labels: easyfix
>             Fix For: 3.5.2, 3.6.0
>
>         Attachments: ZOOKEEPER-2433.patch
>
>   Original Estimate: 5h
>  Remaining Estimate: 5h
>
> The _createSaslServer_ function in ZooKeeperSaslServer +handles only service principal
names+ (eg. *service_name/{color:blue}machine_name{color}@realm*), though sometimes user/service
principal names +without host name+ (eg. *service_name@realm*) are used for authentication.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message