[
https://issues.apache.org/jira/browse/SENTRY-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Ashish K Singh updated SENTRY-1057:
-----------------------------------
Description:
To allow users to perform CRUD of privileges we have couple of options.
1. Add a custom sentry specific CLI.
2. Reuse Kafka's CLI, kafka-acls.sh.
We propose to use the later approach as that will provide a seamless experience
to users. Moreover, Kafka's acls cli supports plugging in third party
authorizer implementations.
Kafka will authenticate users before passing user's request to Sentry to
perform ACLs CRUD. Sentry can assume that users requests coming to it for
performing ACLs CRUD are authenticated and authorized.
was:
To allow users to perform CRUD of privileges we have couple of options.
1. Add a custom sentry specific CLI.
2. Reuse Kafka's CLI, kafka-acls.sh.
We propose to use the later approach as that will provide a seamless experience
to users. Moreover, Kafka's acls cli supports plugging in third party
authorizer implementations.
> Add implementations for acls' CRUD
> ----------------------------------
>
> Key: SENTRY-1057
> URL: https://issues.apache.org/jira/browse/SENTRY-1057
> Project: Sentry
> Issue Type: Sub-task
> Reporter: Ashish K Singh
> Assignee: Ashish K Singh
> Fix For: 1.7.0
>
>
> To allow users to perform CRUD of privileges we have couple of options.
> 1. Add a custom sentry specific CLI.
> 2. Reuse Kafka's CLI, kafka-acls.sh.
> We propose to use the later approach as that will provide a seamless
> experience to users. Moreover, Kafka's acls cli supports plugging in third
> party authorizer implementations.
> Kafka will authenticate users before passing user's request to Sentry to
> perform ACLs CRUD. Sentry can assume that users requests coming to it for
> performing ACLs CRUD are authenticated and authorized.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
