[
https://issues.apache.org/jira/browse/KNOX-237?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15749891#comment-15749891
]
Larry McCay commented on KNOX-237:
----------------------------------
I've committed the docs contribution, [~smore]!
I removed the new file and added the hadoop group lookup provider to the
existing identity assertion provider file.
I also did some overall reorg of the TOC and put the new one with the other
identity assertion providers which were missing before.
Thanks again for your work on this!
> GroupMappingServiceProvider as a Knox Provider
> ----------------------------------------------
>
> Key: KNOX-237
> URL: https://issues.apache.org/jira/browse/KNOX-237
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Reporter: Larry McCay
> Assignee: Sandeep More
> Fix For: 0.11.0
>
> Attachments: KNOX-237.001.patch, KNOX-237.001.patch,
> KNOX-237.knox-site.001.patch
>
>
> Introduce a specific provider for integrating the Hadoop
> GroupMappingServiceProvider for looking up group membership of the
> authenticated (asserted) identity.
> This will allow customers' existing investments in the Hadoop hook to be
> leveraged within Knox and used within the access control policy enforcement
> at the perimeter.
> This mechanism will likely be mutual exclusive of the Shiro provider group
> support - though there may be use cases where they could supplement each
> other.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
