You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ambari.apache.org by "Lars Francke (JIRA)" <ji...@apache.org> on 2017/04/28 15:06:04 UTC
[jira] [Commented] (AMBARI-17715) Not able to login using KnoxSSO
if local/ldap Ambari User with same name exists
[ https://issues.apache.org/jira/browse/AMBARI-17715?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15988964#comment-15988964 ]
Lars Francke commented on AMBARI-17715:
---------------------------------------
I'm stumbling across this now. A few questions:
* You're ignoring a Test without adding any comment. Why? [~rlevas] commented that you didn't have time but why was there any time pressure? Could you file a follow-up to enable the Test again? It's really hard to understand what was going on without the context :(
* You removed the part that creates users in the local DB. How will users ever be added to the local DB so I can give them roles and permissions now? I'm probably missing something but the whole JWT/SSO thing is undocumented so I hope you can help me.
Thank you!
> Not able to login using KnoxSSO if local/ldap Ambari User with same name exists
> -------------------------------------------------------------------------------
>
> Key: AMBARI-17715
> URL: https://issues.apache.org/jira/browse/AMBARI-17715
> Project: Ambari
> Issue Type: Bug
> Components: ambari-server
> Affects Versions: 2.4.0
> Reporter: Myroslav Papirkovskyi
> Assignee: Myroslav Papirkovskyi
> Priority: Blocker
> Fix For: 2.4.0
>
>
> Due to API limitations we cannot login JWT user if LDAP/LOCAL one with same name already exists.
> We should temporary threat JWT users as LDAP ones and rely on ldap-sync process for user creation, as this is most frequent configuration.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)