You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@zookeeper.apache.org by "Li Wang (Jira)" <ji...@apache.org> on 2022/11/09 23:00:00 UTC

[jira] [Commented] (ZOOKEEPER-4612) Adding Authentication and Authorisation to the Admin API

    [ https://issues.apache.org/jira/browse/ZOOKEEPER-4612?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17631328#comment-17631328 ] 

Li Wang commented on ZOOKEEPER-4612:
------------------------------------

The work has been broken down to the following

https://issues.apache.org/jira/browse/ZOOKEEPER-4633. (digest)
https://issues.apache.org/jira/browse/ZOOKEEPER-4634 (x509)
https://issues.apache.org/jira/browse/ZOOKEEPER-4635 (IP)


> Adding Authentication and Authorisation to the Admin API
> --------------------------------------------------------
>
>                 Key: ZOOKEEPER-4612
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4612
>             Project: ZooKeeper
>          Issue Type: New Feature
>          Components: security
>    Affects Versions: 3.9.0
>            Reporter: Li Wang
>            Assignee: Li Wang
>            Priority: Major
>
> Providing auth check by leveraging Zookeeper existing auth schemas and ACL check.
> * Using HTTP authorization header to pass auth schema and auth info
> * Supporting different auth schemas such as digest, x509, etc.
> * Adding checkACLForAdminServerAPIs() to ZookeeperServer to perform auth check
> * This feature will be used by the feature of On-Demand Zookeeper Backup and Restore  with Streaming Capability
> More info can be found https://mail.google.com/mail/u/0/#inbox/FMfcgzGqQSKPdTKzMxVHdCqprcsbRPDt



--
This message was sent by Atlassian Jira
(v8.20.10#820010)