You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by "Nigel Jones (JIRA)" <ji...@apache.org> on 2018/04/23 09:58:00 UTC
[jira] [Resolved] (RANGER-1850) Impersonation/proxy user support
for gaiandb ranger plugin
[ https://issues.apache.org/jira/browse/RANGER-1850?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Nigel Jones resolved RANGER-1850.
---------------------------------
Resolution: Fixed
> Impersonation/proxy user support for gaiandb ranger plugin
> ----------------------------------------------------------
>
> Key: RANGER-1850
> URL: https://issues.apache.org/jira/browse/RANGER-1850
> Project: Ranger
> Issue Type: Sub-task
> Components: plugins
> Reporter: Nigel Jones
> Priority: Major
> Attachments: GaianDBAuth.docx
>
>
> Applications/users could connect to gaianDB using their own authentication information - for example userid/password in the simple case. Here the ranger plugin will use that id for policy checks.
> However in a multi tiered architecture a service id (aka non personal account) may be used, and somehow the user to be impersonated is passed via an additional property. This has a number of implications to the system configuration, derby/gaiandb configuration & the plugin implementation.
> Opening this Jira as a placeholder and will add a document soon (++days) on the same to capture some of the discussion around this area in recent days.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)