Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-13418

HiveServer2 HTTP mode should support X-Forwarded-Host header for authorization/audits

    XMLWordPrintableJSON

    Details

      Description

      Apache Knox acts as a proxy for requests coming from the end users. In these cases, the IP address that HiveServer2 passes to the authorization/audit plugins via the HiveAuthzContext object only the IP address of the proxy, and not the end user.

      For auditing purposes, the IP address of the end user and any proxies in between are useful.
      HiveServer2 should pass the information from 'X-Forwarded-Host' header to the HiveAuthorizer plugins.

        Attachments

        1. HIVE-13418.1.patch
          43 kB
          Thejas Nair

          Issue Links

            Activity

              People

              • Assignee:
                thejas Thejas Nair
                Reporter:
                thejas Thejas Nair
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 20m
                  20m