You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Benoy Antony (JIRA)" <ji...@apache.org> on 2015/07/07 23:01:05 UTC

[jira] [Commented] (HADOOP-12203) Refactor Service Authorization Framework

    [ https://issues.apache.org/jira/browse/HADOOP-12203?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14617406#comment-14617406 ] 

Benoy Antony commented on HADOOP-12203:
---------------------------------------

Please review HADOOP-10679 for more detailed requirements and design document.

As part of generalization, an interface AuthorizationManager<T> is defined. DefaultAuthorizationManager<T> implements
AuthorizationManager<T>. ServiceAuthorizationManager extends DefaultAuthorizationManager<Class?> and is used for
authorize RPC calls.

> Refactor Service Authorization Framework
> ----------------------------------------
>
>                 Key: HADOOP-12203
>                 URL: https://issues.apache.org/jira/browse/HADOOP-12203
>             Project: Hadoop Common
>          Issue Type: Sub-task
>          Components: security
>            Reporter: Benoy Antony
>            Assignee: Benoy Antony
>
> Refactor Service Authorization Framework so that same framework can be used to authenticate requests for RPC and web resources.
> The _ServiceAuthorizationManager_ uses a Class object to identify the RPC protocol that the user is trying to access. While this works for an RPC protocol, it will not work in general.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)