[CASSANDRA-10091] Integrated JMX authn & authz - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Low
Resolution: Fixed
Fix Version/s: 3.6
Component/s: Local/Config, Local/Startup and Shutdown
Labels:
- doc-impacting
- security

Description

It would be useful to authenticate with JMX through Cassandra's internal authentication. This would reduce the overhead of keeping passwords in files on the machine and would consolidate passwords to one location. It would also allow the possibility to handle JMX permissions in Cassandra.

It could be done by creating our own JMX server and setting custom classes for the authenticator and authorizer. We could then add some parameters where the user could specify what authenticator and authorizer to use in case they want to make their own.

This could also be done by creating a premain method which creates a jmx server. This would give us the feature without changing the Cassandra code itself. However I believe this would be a good feature to have in Cassandra.

I am currently working on a solution which creates a JMX server and uses a custom authenticator and authorizer. It is currently build as a premain, however it would be great if we could put this in Cassandra instead.

Attachments

Activity

People

Assignee:: Sam Tunnicliffe

Reporter:: Jan Karlsson

Authors:: Sam Tunnicliffe

Reviewers:: T Jake Luciani

Votes:: 1 Vote for this issue

Watchers:: 15 Start watching this issue

Dates

Created:: 17/Aug/15 12:57

Updated:: 16/Apr/19 09:31

Resolved:: 02/May/16 11:32