Uploaded image for project: 'Accumulo'
  1. Accumulo
  2. ACCUMULO-1300 Allow multiple, prioritized authentication systems
  3. ACCUMULO-1318

Allow granting System.GRANT permission

    XMLWordPrintableJSON

Details

    Description

      With the addition of pluggable authentication/authorizor/permissions handler modules (ACCUMULO-259), it seems we should rely more on these modules to set their policy for who has which permissions.

      As such, I don't believe we should continue to constrain the System.GRANT permission, so that it is held only by the root user. This is an especially important consideration for ACCUMULO-1300, because in that ticket, there will always be a "local" root user, but there's no reason that should be the de-facto account that manages other users' permissions from.

      Attachments

        Issue Links

          is related to

          Sub-task - The sub-task of the issue ACCUMULO-1319 Remove root username prompt from init

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              elserj Josh Elser
              ctubbsii Christopher Tubbs
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 10m
                  10m