Details

    • Improvement
    • Status: In Progress
    • Major
    • Resolution: Unresolved
    • 0.9.0.0
    • None
    • None
    • None

    Description

      Both Authorizer and SASL Authenticator needs a way to convert kerberos principal into a local identity. This jira proposes to add an interface and a config for this conversion so users can inject their own implementation.

      Attachments

        Activity

          githubbot ASF GitHub Bot added a comment -

          Parth-Brahmbhatt commented on pull request #547: KAFKA-2854: Making KerberosShortNamer implement an interface and making it pluggable.
          URL: https://github.com/apache/kafka/pull/547

          ----------------------------------------------------------------
          This is an automated message from the Apache Git Service.
          To respond to the message, please log on GitHub and use the
          URL above to go to the specific comment.

          For queries about this service, please contact Infrastructure at:
          users@infra.apache.org

          githubbot ASF GitHub Bot added a comment - Parth-Brahmbhatt commented on pull request #547: KAFKA-2854 : Making KerberosShortNamer implement an interface and making it pluggable. URL: https://github.com/apache/kafka/pull/547 ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: users@infra.apache.org
          ijuma Ismael Juma added a comment -

          I can take a look tomorrow Parth

          ijuma Ismael Juma added a comment - I can take a look tomorrow Parth
          parth.brahmbhatt Parth Brahmbhatt added a comment - Ismael Juma sriharsha chintalapani Can you review https://github.com/apache/kafka/pull/547
          ijuma Ismael Juma added a comment - - edited

          It would also be interesting to think how these relate to PrincipalBuilder which is currently only used by SSL (we tell people that users can use this to customise the principal for SSL authentication).

          ijuma Ismael Juma added a comment - - edited It would also be interesting to think how these relate to PrincipalBuilder which is currently only used by SSL (we tell people that users can use this to customise the principal for SSL authentication).

          People

            parth.brahmbhatt Parth Brahmbhatt
            parth.brahmbhatt Parth Brahmbhatt

            Dates

              Created:
              Updated:

              Slack