ZooKeeper
  1. ZooKeeper
  2. ZOOKEEPER-1497

Allow server-side SASL login with JAAS configuration to be programmatically set (rather than only by reading JAAS configuration file)

    Details

    • Type: Improvement Improvement
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 3.4.3, 3.5.0
    • Fix Version/s: 3.4.4, 3.5.0
    • Component/s: server
    • Labels:
    • Hadoop Flags:
      Reviewed

      Description

      Currently the CnxnFactory checks for "java.security.auth.login.config" to decide whether or not enable SASL.

      • zookeeper/server/NIOServerCnxnFactory.java
      • zookeeper/server/NettyServerCnxnFactory.java
        • configure() checks for "java.security.auth.login.config"
          • If present start the new Login("Server", SaslServerCallbackHandler(conf))

      But since the SaslServerCallbackHandler does the right thing just checking if getAppConfigurationEntry() is empty, we can allow SASL with JAAS configuration to be programmatically just checking weather or not a configuration entry is present instead of "java.security.auth.login.config".
      (Something quite similar was done for the SaslClient in ZOOKEEPER-1373)

      1. ZOOKEEPER-1497-v1.patch
        8 kB
        Matteo Bertozzi
      2. ZOOKEEPER-1497-v2.patch
        14 kB
        Matteo Bertozzi
      3. ZOOKEEPER-1497-v3.patch
        15 kB
        Matteo Bertozzi
      4. ZOOKEEPER-1497-v4.patch
        20 kB
        Matteo Bertozzi
      5. ZOOKEEPER-1497-v5.patch
        21 kB
        Matteo Bertozzi

        Issue Links

          Activity

          Matteo Bertozzi created issue -
          Matteo Bertozzi made changes -
          Field Original Value New Value
          Attachment ZOOKEEPER-1497-v0.patch [ 12534981 ]
          Matteo Bertozzi made changes -
          Status Open [ 1 ] Patch Available [ 10002 ]
          Patrick Hunt made changes -
          Assignee Matteo Bertozzi [ mbertozzi ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v1.patch [ 12535122 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v0.patch [ 12534981 ]
          Eugene Koontz made changes -
          Link This issue relates to ZOOKEEPER-1373 [ ZOOKEEPER-1373 ]
          Eugene Koontz made changes -
          Link This issue is related to ZOOKEEPER-1455 [ ZOOKEEPER-1455 ]
          Eugene Koontz made changes -
          Summary Allow SASL login with JAAS configuration to be programmatically set (rather than only by reading JAAS configuration file) Allow server-side SASL login with JAAS configuration to be programmatically set (rather than only by reading JAAS configuration file)
          Eugene Koontz made changes -
          Link This issue relates to ZOOKEEPER-1503 [ ZOOKEEPER-1503 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v2.patch [ 12535262 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v2.patch [ 12535262 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v2.patch [ 12535265 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v3.patch [ 12536098 ]
          Patrick Hunt made changes -
          Affects Version/s 3.5.0 [ 12316644 ]
          Affects Version/s 3.3.5 [ 12319081 ]
          Patrick Hunt made changes -
          Status Patch Available [ 10002 ] Open [ 1 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v4.patch [ 12538832 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v4.patch [ 12538832 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v4.patch [ 12538833 ]
          Matteo Bertozzi made changes -
          Attachment ZOOKEEPER-1497-v5.patch [ 12538966 ]
          Patrick Hunt made changes -
          Status Open [ 1 ] Patch Available [ 10002 ]
          Hadoop Flags Reviewed [ 10343 ]
          Fix Version/s 3.4.4 [ 12319841 ]
          Fix Version/s 3.5.0 [ 12316644 ]
          Patrick Hunt made changes -
          Status Patch Available [ 10002 ] Resolved [ 5 ]
          Resolution Fixed [ 1 ]
          Paolo Calabro made changes -
          Attachment guavacourt-hooke1-qrcode-SMALL.png [ 12543392 ]
          Attachment guavacourt-btbet-qrcode-SMALL-2.png [ 12543393 ]
          Attachment guavacourt-btbet-qrcode-SMALL-1.png [ 12543394 ]
          Attachment guavacourt-bonusbag-qrcode-SMALL-1.png [ 12543395 ]
          Attachment guavacourt-hooke1-qrcode-SMALL.png [ 12543396 ]
          Attachment guavacourt-teaebooks-qrcode-SMALL.png [ 12543397 ]
          Attachment guavacourt-bonusbag-qrcode-SMALL-1.png [ 12543398 ]
          Attachment guavacourt-hooke1-qrcode-SMALL-1.png [ 12543399 ]
          Attachment guavacourt-bonusbag-qrcode-SMALL.png [ 12543400 ]
          Attachment guavacourt-hooke1-qrcode-SMALL.png [ 12543401 ]
          Patrick Hunt made changes -
          Attachment guavacourt-bonusbag-qrcode-SMALL-1.png [ 12543398 ]
          Patrick Hunt made changes -
          Attachment guavacourt-bonusbag-qrcode-SMALL-1.png [ 12543395 ]
          Patrick Hunt made changes -
          Attachment guavacourt-bonusbag-qrcode-SMALL.png [ 12543400 ]
          Patrick Hunt made changes -
          Attachment guavacourt-btbet-qrcode-SMALL-1.png [ 12543394 ]
          Patrick Hunt made changes -
          Attachment guavacourt-teaebooks-qrcode-SMALL.png [ 12543397 ]
          Patrick Hunt made changes -
          Attachment guavacourt-hooke1-qrcode-SMALL.png [ 12543401 ]
          Patrick Hunt made changes -
          Attachment guavacourt-hooke1-qrcode-SMALL-1.png [ 12543399 ]
          Patrick Hunt made changes -
          Attachment guavacourt-btbet-qrcode-SMALL-2.png [ 12543393 ]
          Patrick Hunt made changes -
          Attachment guavacourt-hooke1-qrcode-SMALL.png [ 12543396 ]
          Patrick Hunt made changes -
          Attachment guavacourt-hooke1-qrcode-SMALL.png [ 12543392 ]

            People

            • Assignee:
              Matteo Bertozzi
              Reporter:
              Matteo Bertozzi
            • Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development