[SOLR-9541] Support configurable authentication mechanism for internode communication - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Not A Problem
Affects Version/s: 5.3, 6.0
Fix Version/s: None
Component/s: None
Labels:
None

Description

~~SOLR-7849~~ introduced PKI based authentication mechanism for internode communication. The main reason for introducing ~~SOLR-7849~~ was,

>> Relying on every Authentication plugin to secure the internode communication is error prone.

At Cloudera we are using Kerberos protocol for all communication without any issues (i.e. between client/server as well as server/server). We should make this internode authentication mechanism configurable (with default as PKI based mechanism). This will allow users to decide the appropriate authentication mechanism based on their security requirements.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Hrishikesh Gadre

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 21/Sep/16 01:34

Updated:: 08/Jun/19 15:32

Resolved:: 07/May/17 18:36