Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
3.4.0
-
None
-
None
-
One-line fix for bug identified by Tom Klonikowski
Description
Tom Klonikowski writes:
Hello developers,
the SaslServerCallbackHandler in trunk changes the principal name
service/host@REALM to service/service@REALM (i guess unintentionally).
lines 131-133:
if (!removeHost() && (kerberosName.getHostName() != null))
Server Log:
SaslServerCallbackHandler@115] - Successfully authenticated client:
authenticationID=fetcher/ubook@QUINZOO;
authorizationID=fetcher/ubook@QUINZOO.
SaslServerCallbackHandler@137] - Setting authorizedID:
fetcher/fetcher@QUINZOO
Attachments
Attachments
Issue Links
- depends upon
-
ZOOKEEPER-938 Support Kerberos authentication of clients.
- Closed
- is part of
-
ZOOKEEPER-1201 Clean SaslServerCallbackHandler.java
- Closed
- relates to
-
ZOOKEEPER-1196 improve Kerberos name parsing and canonicalization testing
- Open