Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-14951

KMSACL implementation is not configurable

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Patch Available
    • Major
    • Resolution: Unresolved
    • None
    • None
    • kms
    • Patch

    Description

      Currently, it is not possible to customize KMS's key management, if KMSACLs behaviour is not enough. If an external key management solution is used, that would need a higher level API, where it can decide, if the given operation is allowed, or not.
      For this to achieve, it would be a solution, to introduce a new interface, which could be implemented by KMSACLs - and also other KMS - and a new configuration point could be added, where the actual interface implementation could be specified.

      Attachments

        1. HADOOP-14951-10.patch
          31 kB
          Zsombor Gegesy
        2. HADOOP-14951-11.patch
          44 kB
          Zsombor Gegesy
        3. HADOOP-14951-12.patch
          39 kB
          Zsombor Gegesy
        4. HADOOP-14951-13.patch
          39 kB
          Zsombor Gegesy
        5. HADOOP-14951-9.patch
          31 kB
          Zsombor Gegesy

        Issue Links

          blocks

          Improvement - An improvement or enhancement to an existing feature or task. RANGER-1869 KMS has duplicated code from Hadoop KMS

          • Major - Major loss of function.
          • Open
          is related to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-15381 KmsAcls should be reloaded periodically.

          • Major - Major loss of function.
          • Open
          links to

          Web Link GitHub Pull Request #664

          Activity

            People

              zsombor Zsombor Gegesy
              zsombor Zsombor Gegesy
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated: