Hrishikesh Gadre created SOLR-9513:
--------------------------------------
Summary: Introduce a generic authentication plugin which delegates
all functionality to Hadoop authentication framework
Key: SOLR-9513
URL: https://issues.apache.org/jira/browse/SOLR-9513
Project: Solr
Issue Type: Improvement
Security Level: Public (Default Security Level. Issues are Public)
Reporter: Hrishikesh Gadre
Currently Solr kerberos authentication plugin delegates the core logic to
Hadoop authentication framework. But the configuration parameters required by
the Hadoop authentication framework are hardcoded in the plugin code itself.
https://github.com/apache/lucene-solr/blob/5b770b56d012279d334f41e4ef7fe652480fd3cf/solr/core/src/java/org/apache/solr/security/KerberosPlugin.java#L119
The problem with this approach is that we need to make code changes in Solr to
expose new capabilities added in Hadoop authentication framework. e.g.
HADOOP-12082
We should implement a generic Solr authentication plugin which will accept
configuration parameters via security.json (in Zookeeper) and delegate them to
Hadoop authentication framework. This will allow to utilize new features in
Hadoop without code changes in Solr.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
