You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@accumulo.apache.org by GitBox <gi...@apache.org> on 2019/06/19 19:50:28 UTC

[GitHub] [accumulo] milleruntime opened a new issue #1221: New Security Interface

milleruntime opened a new issue #1221: New Security Interface
URL: https://github.com/apache/accumulo/issues/1221
 
 
   Design for a cleaner internal security interface:
   ```java
   public interface Security {
   
     /**
      * Only called when Accumulo is initiazed.  This will initialize the security for Accumulo.
      *
      * @param configuration SiteConfiguration server configuration
      */
     void initialize(SiteConfiguration configuration);
   
     /**
      * Return a security operation object.
      *
      * @return SecurityOperation Utility class for performing security operations.
      */
     SecurityOperation operation();
   }
   ```
   
   The idea is to separate the security plugin implementation (KerberosAuthenticator, KerberosAuthorizer, ZKAuthorizer, etc), from the ServerContext and Initialization for Accumulo.  Currently, we have bootstrapping security issues between ServerContext and Initialize.  Initialize is a one time action but part way through it creates a ServerContext object and then initializes security.  I think ServerContext should be separated from the Initialize procedure.  This would simplify a lot of things since ServerContext would then always have a security state initialized, which is the typical behavior of a server. 

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services