You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@hbase.apache.org by "Gary Helmling (JIRA)" <ji...@apache.org> on 2014/11/26 00:02:12 UTC
[jira] [Created] (HBASE-12579) Move obtainAuthTokenForJob() methods
out of User
Gary Helmling created HBASE-12579:
-------------------------------------
Summary: Move obtainAuthTokenForJob() methods out of User
Key: HBASE-12579
URL: https://issues.apache.org/jira/browse/HBASE-12579
Project: HBase
Issue Type: Improvement
Components: security
Reporter: Gary Helmling
The {{User}} class currently contains some utility methods to obtain HBase authentication tokens for the given user. However, these methods initiate an RPC to the {{TokenProvider}} coprocessor endpoint, an action which should not be part of the User class' responsibilities.
This leads to a couple of problems:
# The way the methods are currently structured, it is impossible to integrate them with normal connection management for the cluster (the TokenUtil class constructs its own HTable instance internally).
# The User class is logically part of the hbase-common module, but uses the TokenUtil class (part of hbase-server, though it should probably be moved to hbase-client) through reflection, leading to a hidden dependency.
The {{obtainAuthTokenForJob()}} methods should be deprecated and the process of obtaining authentication tokens should be moved to use the normal connection lifecycle.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)