You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@kafka.apache.org by "Edoardo Comar (JIRA)" <ji...@apache.org> on 2016/05/09 10:52:12 UTC

[jira] [Created] (KAFKA-3679) Allow reuse of implementation of RFC 4616 in PlainSaslServer

Edoardo Comar created KAFKA-3679:
------------------------------------

             Summary: Allow reuse of implementation of RFC 4616 in PlainSaslServer 
                 Key: KAFKA-3679
                 URL: https://issues.apache.org/jira/browse/KAFKA-3679
             Project: Kafka
          Issue Type: Improvement
          Components: clients
    Affects Versions: 0.10.0.0
            Reporter: Edoardo Comar
            Assignee: Edoardo Comar


Using SASL PLAIN in production may require a different username/password checking than what is currently in the codebase, based on data contained in the server jaas.conf.

To do so, a deployment needs to extend the SaslPlainServer as described here
http://kafka.apache.org/0100/documentation.html#security_sasl_plain_production

However the evaluate(byes) method still needs to impleemnt RFC4616, so it is useful to separate the password checking from the reading of the data from the wire. 
A simple extract method into an overridable methos should suffice



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)