You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@accumulo.apache.org by GitBox <gi...@apache.org> on 2019/06/19 19:50:28 UTC
[GitHub] [accumulo] milleruntime opened a new issue #1221: New Security
Interface
milleruntime opened a new issue #1221: New Security Interface
URL: https://github.com/apache/accumulo/issues/1221
Design for a cleaner internal security interface:
```java
public interface Security {
/**
* Only called when Accumulo is initiazed. This will initialize the security for Accumulo.
*
* @param configuration SiteConfiguration server configuration
*/
void initialize(SiteConfiguration configuration);
/**
* Return a security operation object.
*
* @return SecurityOperation Utility class for performing security operations.
*/
SecurityOperation operation();
}
```
The idea is to separate the security plugin implementation (KerberosAuthenticator, KerberosAuthorizer, ZKAuthorizer, etc), from the ServerContext and Initialization for Accumulo. Currently, we have bootstrapping security issues between ServerContext and Initialize. Initialize is a one time action but part way through it creates a ServerContext object and then initializes security. I think ServerContext should be separated from the Initialize procedure. This would simplify a lot of things since ServerContext would then always have a security state initialized, which is the typical behavior of a server.
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
With regards,
Apache Git Services