You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@zookeeper.apache.org by "Michael Han (JIRA)" <ji...@apache.org> on 2017/03/13 16:22:08 UTC
[jira] [Updated] (ZOOKEEPER-2456) Provide API to get user from
different authentication providers
[ https://issues.apache.org/jira/browse/ZOOKEEPER-2456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Michael Han updated ZOOKEEPER-2456:
-----------------------------------
Fix Version/s: (was: 3.5.3)
3.6.0
3.5.4
> Provide API to get user from different authentication providers
> ---------------------------------------------------------------
>
> Key: ZOOKEEPER-2456
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-2456
> Project: ZooKeeper
> Issue Type: Improvement
> Components: server
> Reporter: Mohammad Arshad
> Assignee: Mohammad Arshad
> Fix For: 3.5.4, 3.6.0
>
>
> Currently zookeeper server same field is used to store both user name and password
> Provide a mechanism to separate the user and password either by adding new field or by adding new API
> DETAILS:
> org.apache.zookeeper.data.Id class is used to store scheme and id.
> {code}
> public Id( String scheme, String id)
> {code}
> id field holds only user in most cases but in some cases it holds user as well as password
> By default there are only four authentication provider
> DigestAuthenticationProvider
> IPAuthenticationProvider
> SASLAuthenticationProvider
> X509AuthenticationProvider
> In code we can check if scheme is digest then {{id.split(":")\[0\]}} is user otherwise id is user. This will work only if we are limited to above four authentication provider
> But Custom authentication provider are very important and are very commonly used. How the zookeeper code will know what is the user, is it id or {{id.split(":")\[0\]}} or anything else ?
> So there is need to add new API which AuthenticationProvider providers implement to define what is user.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)