Uploaded image for project: 'Apache Blur'
  1. Apache Blur
  2. BLUR-346

Blur authentication/authorization infrastructure

Details

    • New Feature
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • Blur, Blur MapReduce
    • None

    Description

      As components of the hadoop ecosystem implement security (Kerberos in HDFS, Zookeeper, etc.) connecting to these resources requires similar capabilities. Candidates for securing include:

      1. Configurable/pluggable authentication for Blur Thrift connections.
      2. Configurable/pluggable authentication/authorization for Blur calls.
      3. Configurable/pluggable authentication/authorization for ZooKeeper calls.
      4. Configurable/pluggable authentication/authorization for Hadoop calls.

      Attachments

        Activity

          amccurry Aaron McCurry added a comment -

          The code is not fully tested, but SASL has been integrated in both the server side and client side logic.

          https://github.com/apache/incubator-blur/commit/8674d9dcfe0456c07592ef9fd7ad344de0726cde

          amccurry Aaron McCurry added a comment - The code is not fully tested, but SASL has been integrated in both the server side and client side logic. https://github.com/apache/incubator-blur/commit/8674d9dcfe0456c07592ef9fd7ad344de0726cde
          amccurry Aaron McCurry added a comment - Here is an API for authorization of Blur calls. https://github.com/apache/incubator-blur/commit/4468f6cc52e8b615f8e23cf26664dacc54a27027

          People

            amccurry Aaron McCurry
            ssak Steve Sak
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: