[
https://issues.apache.org/jira/browse/NIFI-1884?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15292230#comment-15292230
]
ASF GitHub Bot commented on NIFI-1884:
--------------------------------------
Github user alopresto commented on the pull request:
https://github.com/apache/nifi/pull/452#issuecomment-220464739
@mcgilman thanks for the response above. It feels a little to me like the
authorizer has gotten conflated with user and group management tasks. If the
authorizer' responsibility is strictly to manage and enforce policy, then we
probably want a `UserService` to manage user retrieval, modification, etc.
Maybe this is injected into the authorizer to allow various identity provider
implementations (LDAP, Kerberos, etc.) to work with various authorizers
(Ranger, NiFi internal, etc.) I'm not going to hold up this step with the
understanding there are still more design decisions to be made.
> Add User & Group API
> --------------------
>
> Key: NIFI-1884
> URL: https://issues.apache.org/jira/browse/NIFI-1884
> Project: Apache NiFi
> Issue Type: Sub-task
> Components: Core Framework
> Reporter: Bryan Bende
> Assignee: Bryan Bende
> Priority: Minor
> Fix For: 1.0.0
>
>
> Define the API for managing users, groups, and policies.
> This is to advance the work described in this feature proposal:
> https://cwiki.apache.org/confluence/display/NIFI/Support+Authorizer+API
> The parent JIRA for all authorization work is NIFI-1550.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
