[
https://issues.apache.org/jira/browse/TINKERPOP-1566?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15746237#comment-15746237
]
Marc de Lignie commented on TINKERPOP-1566:
-------------------------------------------
@[~spmallette] thanks for the feedback. My branch at
https://github.com/vtslab/incubator-tinkerpop/tree/TINKERPOP-1566 is a number
of commits further now and loose ends are becoming fewer. I initiated the
process for getting permission from my organization regarding the copyright
transfer, so I am working towards a PR.
The gremlin-python maintainers might take a look at
https://github.com/vtslab/incubator-tinkerpop/commit/1087746998531738f5212d76a70f950b37dbc704
and see whether they agree with the way they are mentioned. Even better would
be to take up the challlenge and integrate python's
https://pypi.python.org/pypi/pure-sasl/ client into gremlin-python. Pure-sasl
supports GSSAPI (Kerberos) out-of-the-box, it says.
> Kerberos authentication for gremlin-server
> ------------------------------------------
>
> Key: TINKERPOP-1566
> URL: https://issues.apache.org/jira/browse/TINKERPOP-1566
> Project: TinkerPop
> Issue Type: Improvement
> Components: server
> Reporter: Marc de Lignie
> Priority: Minor
> Labels: security
> Fix For: 3.3.0
>
>
> Gremlin server would benefit from an explicit Kerberos authentication plugin,
> because preparing and maintaining such a plugin is nontrivial. Also, many
> other Apache project provide kerberized services.
> In gremlin-console the standard Krb5LoginModule can be configured.
> Gremlin-server already includes the pluggable Sasl framework that can host
> the proposed Kerberos authentication plugin.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
