zookeeper-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rakesh R (JIRA)" <j...@apache.org>
Subject [jira] [Comment Edited] (ZOOKEEPER-1045) Support Quorum Peer mutual authentication via SASL
Date Mon, 04 Jul 2016 03:37:11 GMT

    [ https://issues.apache.org/jira/browse/ZOOKEEPER-1045?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15360796#comment-15360796
] 

Rakesh R edited comment on ZOOKEEPER-1045 at 7/4/16 3:36 AM:
-------------------------------------------------------------

[~hanm] Yes, exactly. Presently we will be supporting only single(shared) Kerb principal across
all the servers. We could capture this point clearly in our test report documentation and
later the same can be used to update {{cwiki page}} as well. In future, if anyone has a use
case of different Kerb principal then we can discuss/extend the implementation to support
the same later. IMHO, its not required to handle those complex case now. Does that make sense
to you?


was (Author: rakeshr):
[~hanm] Yes, exactly. Presently we will be supporting only single(shared) Kerb principal across
all the servers now. We could capture this point clearly in our test report documentation
and later the same can be used to update {{cwiki page}} as well. In future, if anyone has
a use case of different Kerb principal then we can discuss/extend the implementation to support
the same later. IMHO, its not required to handle those complex case now. Does that make sense
to you?

> Support Quorum Peer mutual authentication via SASL
> --------------------------------------------------
>
>                 Key: ZOOKEEPER-1045
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1045
>             Project: ZooKeeper
>          Issue Type: New Feature
>          Components: server
>            Reporter: Eugene Koontz
>            Assignee: Rakesh R
>            Priority: Critical
>             Fix For: 3.4.9, 3.5.3
>
>         Attachments: 0001-ZOOKEEPER-1045-br-3-4.patch, 1045_failing_phunt.tar.gz, ZK-1045-test-case-failure-logs.zip,
ZOOKEEPER-1045-00.patch, ZOOKEEPER-1045-Rolling Upgrade Design Proposal.pdf, ZOOKEEPER-1045-br-3-4.patch,
ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch
>
>
> ZOOKEEPER-938 addresses mutual authentication between clients and servers. This bug,
on the other hand, is for authentication among quorum peers. Hopefully much of the work done
on SASL integration with Zookeeper for ZOOKEEPER-938 can be used as a foundation for this
enhancement.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message