[
https://issues.apache.org/jira/browse/KNOX-2829?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17628202#comment-17628202
]
ASF subversion and git services commented on KNOX-2829:
-------------------------------------------------------
Commit ccddcc8df1b4676c692fc1b1bd4093e4ffcef2c2 in knox's branch
refs/heads/dependabot/npm_and_yarn/knox-token-management-ui/scss-tokenizer-and-angular/cli--removed
from Sandor Molnar
[ https://gitbox.apache.org/repos/asf?p=knox.git;h=ccddcc8df ]
KNOX-2829 - Impersonation is disabled if knox.token.impersonation.enabled is
not added in the KNOXTOKEN service configuration (#657)
In addition to changing this poorly chosen default, some helpful logging is
added.
> Change the default value of knox.token.impersonation.enabled
> ------------------------------------------------------------
>
> Key: KNOX-2829
> URL: https://issues.apache.org/jira/browse/KNOX-2829
> Project: Apache Knox
> Issue Type: Task
> Components: Server
> Affects Versions: 2.0.0
> Reporter: Sandor Molnar
> Assignee: Sandor Molnar
> Priority: Major
> Fix For: 2.0.0
>
> Time Spent: 20m
> Remaining Estimate: 0h
>
> Currently the default value of {{knox.token.impersonation.enabled}} is
> {{{}true{}}}. That is, if this config is not declared in {{KNOXTOKEN}}
> service parameters, token impersonation is enabled.
> We need to change this default value to {{{}false{}}}. This way customers
> will bear in mind that enabling token impersonation itself is not enough,
> they also need to configure the required token proxyuser config. See details
> [here|file:///Users/sandormolnar/projects/knox-site/site/books/knox-2-0-0/user-guide.html#Token+impersonation].
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
