techdocsmith commented on a change in pull request #10532:
URL: https://github.com/apache/druid/pull/10532#discussion_r513713688
##########
File path: docs/development/extensions-core/druid-basic-security.md
##########
@@ -81,11 +88,17 @@ The authenticator configuration examples in the rest of
this document will use "
|`druid.auth.authenticator.MyBasicMetadataAuthenticator.initialInternalClientPassword`|Initial
[Password Provider](../../operations/password-provider.md) for the default
internal system user, used for internal process communication. If no password
is specified, the default internal system user will not be created. If the
default internal system user already exists, setting this property will not
affect its password.|null|No|
|`druid.auth.authenticator.MyBasicMetadataAuthenticator.enableCacheNotifications`|If
true, the Coordinator will notify Druid processes whenever a configuration
change to this Authenticator occurs, allowing them to immediately update their
state without waiting for polling.|true|No|
|`druid.auth.authenticator.MyBasicMetadataAuthenticator.cacheNotificationTimeout`|The
timeout in milliseconds for the cache notifications.|5000|No|
-|`druid.auth.authenticator.MyBasicMetadataAuthenticator.credentialIterations`|Number
of iterations to use for password hashing.|10000|No|
+|`druid.auth.authenticator.MyBasicMetadataAuthenticator.credentialIterations`|Number
of iterations to use for password hashing. See [Credential iterations and
query times](#credential-iterations-and-query-times)|10000|No|
|`druid.auth.authenticator.MyBasicMetadataAuthenticator.credentialsValidator.type`|The
type of credentials store (metadata) to validate requests
credentials.|metadata|No|
|`druid.auth.authenticator.MyBasicMetadataAuthenticator.skipOnFailure`|If true
and the request credential doesn't exists or isn't fully configured in the
credentials store, the request will proceed to next Authenticator in the
chain.|false|No|
|`druid.auth.authenticator.MyBasicMetadataAuthenticator.authorizerName`|Authorizer
that requests should be directed to|N/A|Yes|
+##### Credential iterations and query times
Review comment:
@suneet-s I have updated this to reflect that the impact is on all API
calls, but in the first sentence mention "including queries"
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
