You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Nigel Jones (JIRA)" <ji...@apache.org> on 2018/04/23 09:58:00 UTC

[jira] [Resolved] (RANGER-1850) Impersonation/proxy user support for gaiandb ranger plugin

     [ https://issues.apache.org/jira/browse/RANGER-1850?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Nigel Jones resolved RANGER-1850.
---------------------------------
    Resolution: Fixed

> Impersonation/proxy user support for gaiandb ranger plugin
> ----------------------------------------------------------
>
>                 Key: RANGER-1850
>                 URL: https://issues.apache.org/jira/browse/RANGER-1850
>             Project: Ranger
>          Issue Type: Sub-task
>          Components: plugins
>            Reporter: Nigel Jones
>            Priority: Major
>         Attachments: GaianDBAuth.docx
>
>
> Applications/users could connect to gaianDB using their own authentication information - for example userid/password in the simple case. Here the ranger plugin will use that id for policy checks.
> However in a multi tiered architecture a service id (aka non personal account) may be used, and somehow the user to be impersonated is passed via an additional property. This has a number of implications to the system configuration, derby/gaiandb configuration & the plugin implementation. 
> Opening this Jira as a placeholder and will add a document soon (++days) on the same to capture some of the discussion around this area in recent days.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)