[jira] [Commented] (KNOX-1559) Create Dispatch implementation that is configurable via service.xml file

Tue, 20 Nov 2018 09:19:49 -0800 


    [ 
https://issues.apache.org/jira/browse/KNOX-1559?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16693500#comment-16693500
 ] 

Larry McCay commented on KNOX-1559:
-----------------------------------

I would be surprised if PassAllHeaders doesn't send the Authorization header. 
This dispatch is specifically created for services that don't support trusted 
proxy and want to provide their own authentication. So, in order for the Ambari 
API to get the basic auth credentials, we would have had to send it. However, 
if the API was never expected to be used other than by a proxied Ambari UI, 
that may be the case. The Ambari specific session cookies would be enough.

> Create Dispatch implementation that is configurable via service.xml file
> ------------------------------------------------------------------------
>
>                 Key: KNOX-1559
>                 URL: https://issues.apache.org/jira/browse/KNOX-1559
>             Project: Apache Knox
>          Issue Type: Improvement
>            Reporter: Robert Levas
>            Assignee: Kevin Risden
>            Priority: Major
>              Labels: ambari
>             Fix For: 1.3.0
>
>         Attachments: KNOX-1559.patch
>
>
> Create a {{org.apache.knox.gateway.dispatch.Dispatch}} implementation that is 
> configurable via metadata file (for example, {{service.xml}}).   Configurable 
> parameters should be 
> * headers to exclude when forwarding requests
> * whether parameters should URL-encoded or not
> Such an implementation should be able to make at least the following Dispatch 
> implementations obsolete:
> * org.apache.knox.gateway.dispatch.PassAllHeadersNoEncodingDispatch
> * org.apache.knox.gateway.dispatch.PassAllHeadersDispatch
> A possible declaration could be:
> {code}
>     <dispatch 
> classname="org.apache.knox.gateway.dispatch.ConfigurableDispatch">
>        <property>
>            <name>excludeHeaders<name>
>            <value>Authorization, Content-Length</value>
>        </property>
>        <property>
>            <name>removeUrlEncoding<name>
>            <value>false</value>
>        </property>
>     </dispatch>
> {code}
> Or maybe
> {code}
>     <dispatch 
> classname="org.apache.knox.gateway.dispatch.ConfigurableDispatch" 
> removeUrlEncoding="true" excludeHeaders="Authorization, Content-Length" />
> {code}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to