Re: [PR] [#4247] improvement(docs): Add docs about multiple-level authentication for Hadoop catalog. [gravitino]

via GitHub Thu, 25 Jul 2024 01:49:24 -0700


justinmclean commented on code in PR #4248:
URL: https://github.com/apache/gravitino/pull/4248#discussion_r1691080553



##########
docs/hadoop-catalog.md:
##########
@@ -28,13 +28,25 @@ Besides the [common catalog 
properties](./gravitino-server-config.md#gravitino-c
 | Property Name                                      | Description             
                                                                       | 
Default Value | Required                                                    | 
Since Version |
 
|----------------------------------------------------|------------------------------------------------------------------------------------------------|---------------|-------------------------------------------------------------|---------------|
 | `location`                                         | The storage location 
managed by Hadoop catalog.                                                | 
(none)        | No                                                          | 
0.5.0         |
-| `authentication.type`                              | The type of 
authentication for Hadoop catalog, currently we only support `kerberos`, 
`simple`. | `simple`      | No                                                  
        | 0.5.1         |
 | `authentication.impersonation-enable`              | Whether to enable 
impersonation for the Hadoop catalog.                                        | 
`false`       | No                                                          | 
0.5.1         |
+| `authentication.type`                              | The type of 
authentication for Hadoop catalog, currently we only support `kerberos`, 
`simple`. | `simple`      | No                                                  
        | 0.5.1         |
 | `authentication.kerberos.principal`                | The principal of the 
Kerberos authentication                                                   | 
(none)        | required if the value of `authentication.type` is Kerberos. | 
0.5.1         |
 | `authentication.kerberos.keytab-uri`               | The URI of The keytab 
for the Kerberos authentication.                                         | 
(none)        | required if the value of `authentication.type` is Kerberos. | 
0.5.1         |
 | `authentication.kerberos.check-interval-sec`       | The check interval of 
Kerberos credential for Hadoop catalog.                                  | 60   
         | No                                                          | 0.5.1  
       |
 | `authentication.kerberos.keytab-fetch-timeout-sec` | The fetch timeout of 
retrieving Kerberos keytab from `authentication.kerberos.keytab-uri`.     | 60  
          | No                                                          | 0.5.1 
        |
 
+
+### Authentication for Hadoop Catalog
+
+The Hadoop catalog supports multi-level authentication to control access, 
allowing different authentication settings for the catalog, schema, and 
fileset. The priority of authentication settings is as follows: catalog < 
schema < fileset. Specifically:

Review Comment:
   "control access" is fine, to control access to something means you you 
define who can and can't access the resourse.



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Re: [PR] [#4247] improvement(docs): Add docs about multiple-level authentication for Hadoop catalog. [gravitino]

Reply via email to