Uploaded image for project: 'Accumulo'
  1. Accumulo
  2. ACCUMULO-259

ZKAuthentictor needs to be split up

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 1.5.0
    • master, tserver
    • None

    Description

      Currently the ZKAuthenticator does both the checking of credentials as well as the functionality of the Authenticator. We need to split those into two different classes for improved testing as well as pluggability of the security scheme.

      Attachments

        1. accumulo259_explained.pdf
          215 kB
          John Vines

        Issue Links

          contains

          Improvement - An improvement or enhancement to an existing feature or task. ACCUMULO-135 Switch to kerberos for authentication

          • Major - Major loss of function.
          • Resolved
          is duplicated by

          Improvement - An improvement or enhancement to an existing feature or task. ACCUMULO-135 Switch to kerberos for authentication

          • Major - Major loss of function.
          • Resolved
          1.
          		 Document ACCUMULO-259 Sub-task Resolved John Vines
          2.
          		 explore exposing accumulo token in proxy Sub-task Resolved John Vines
          3.
          		 what is the point of SecuritySerDe? Sub-task Resolved John Vines
          4.
          		 Deprecate built-in user management utilities Sub-task Resolved Christopher Tubbs
          5.
          		 Don't deprecate AuthInfo Sub-task Resolved John Vines
          6.
          		 Don't use @Deprecated to mean "Not for Client Use" Sub-task Resolved Christopher Tubbs
          7.
          		 Consolidate the thrift objects for Authentication information Sub-task Resolved John Vines
          8.
          		 Distinguish the user principal from the authentication token Sub-task Resolved John Vines
          9.
          		 Generic interface for arbitrary token handling Sub-task Resolved John Vines
          10.
          		 Make it easier for users to construct and use a security token Sub-task Resolved John Vines
          11.
          		 Rename SecurityToken to AuthenticationToken Sub-task Resolved Christopher Tubbs
          12.
          		 Create tests, documentation, and examples of InsecureAuthenticator Sub-task Resolved John Vines
          13.
          		 Put security-related APIs that clients need in the "o.a.a.core.client" package, or a security sub-package Sub-task Resolved John Vines
          14.
          		 expose accumulo token in cli Sub-task Resolved John Vines
          15.
          		 Migrate all existing code from using deprecated user/pass methods Sub-task Resolved John Vines
          16.
          		 Add way for command line user to determine required Properties Sub-task Resolved John Vines
          17.
          		 Exposed accumulo token in shell Sub-task Resolved John Vines
          18.
          		 Clean up usage of Passwords where possible, deprecate others Sub-task Resolved Christopher Tubbs
          19.
          		 re-document deprecated getConnector() API's Sub-task Resolved John Vines
          20.
          		 Can not view traces Sub-task Resolved John Vines
          21.
          		 Support destroyable map for creating authentication token Sub-task Resolved John Vines
          22.
          		 Remove root username prompt from init Sub-task Resolved John Vines

          Activity

            People

              vines John Vines
              vines John Vines
              Votes:
              1 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: