You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hive.apache.org by "Edward Capriolo (JIRA)" <ji...@apache.org> on 2009/09/18 20:16:15 UTC

[jira] Commented: (HIVE-842) Authentication Infrastructure for Hive

    [ https://issues.apache.org/jira/browse/HIVE-842?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12757309#action_12757309 ] 

Edward Capriolo commented on HIVE-842:
--------------------------------------

hive.conf
{noformat}
<property>
  <name>hive.authenticate.class</name>
  <value>org.apache.hadoop.hive.auth.DefaultAuthenticator</value>
    <description>Use this setting to use your own authentication framework. LDAP mysql etc
  </description>
</property>
{noformat}

{noformat}
public interface Authenticator {
  public boolean authenticate(SessionState session);
}
class DefaultAuthenticator implements Authenticator{
  public boolean authenticate(SessionState session){
    return true;
  }
}
{noformat}

Thus the authentication is plugable

{noformat}
class SharedSecretAuthenticator implements Authenticator {
   public boolean authenticate(SessionState session){
      if (session.ss.getConf().getVar("USERNAME").equals("admind") &&
          session.ss.getConf().getVar("PASSWORD").equals("secret") )
            return true;
      return false;
  }
}
{noformat}

It would be trivial to them implement LDAP, Mysql, or other types of authentication. The call to the authenticator could be plugged in to the API anywhere a reference to the clients SessionState exists.

> Authentication Infrastructure for Hive
> --------------------------------------
>
>                 Key: HIVE-842
>                 URL: https://issues.apache.org/jira/browse/HIVE-842
>             Project: Hadoop Hive
>          Issue Type: New Feature
>          Components: Server Infrastructure
>            Reporter: Edward Capriolo
>
> This issue deals with the authentication (user name,password) infrastructure. Not the authorization components that specify what a user should be able to do.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.