Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-6224

Default Realm in kerberos-provider is not used

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 1.9.2
    • 1.10.0
    • Core Framework
    • None

    Description

      The Default Realm property in kerberos-provider is never read or used. The KerberosProvider implementation should make use of that property in the following prioritized way:

      • A realm-qualified principal will not be modified before authentication
      • A principal shortname will have Default Realm appended to it when it is not blank before authentication
      • A principal shortname will not be modified if Default Realm is blank, and the underlying kerberos implementation will append the default_realm configured in krb5.conf

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. NIFIREG-253 Default Realm in kerberos-identity-provider is not used

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #3446

          Activity

            People

              jtstorck Jeff Storck
              jtstorck Jeff Storck
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 40m
                  40m