Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-3679

Allow reuse of implementation of RFC 4616 in PlainSaslServer

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Won't Fix
    • 0.10.0.0
    • None
    • clients
    • None

    Description

      Using SASL PLAIN in production may require a different username/password checking than what is currently in the codebase, based on data contained in the server jaas.conf.

      To do so, a deployment needs to extend the SaslPlainServer as described here
      http://kafka.apache.org/0100/documentation.html#security_sasl_plain_production

      However the evaluate(byes) method still needs to impleemnt RFC4616, so it is useful to separate the password checking from the reading of the data from the wire.
      A simple extract method into an overridable methos should suffice

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #1350

          Activity

            People

              ecomar Edoardo Comar
              ecomar Edoardo Comar
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: