Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-25957

Fix password based authentication with SAML enabled

Log workAgile BoardRank to TopRank to BottomBulk Copy AttachmentsBulk Move AttachmentsVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    Description

      In HIVE-25875, we allowed SAML to be set with other password based authentication, but we pass NONE to the function doPasswordAuth. That is, any requests use basic authentication header can bypass the password verification because NONE means a no-op authentication.

      Attachments

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            hsnusonic Yu-Wen Lai Assign to me
            hsnusonic Yu-Wen Lai
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

              Estimated:
              Original Estimate - Not Specified
              Not Specified
              Remaining:
              Remaining Estimate - 0h
              0h
              Logged:
              Time Spent - 1.5h
              1.5h

              Slack

                Issue deployment