[
https://issues.apache.org/jira/browse/TINKERPOP-1566?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15828050#comment-15828050
]
ASF GitHub Bot commented on TINKERPOP-1566:
-------------------------------------------
Github user vtslab commented on the issue:
https://github.com/apache/tinkerpop/pull/534
Yes, I mentioned these failing tests in the PR text above. I suspect that
the java security libs just pick up the krb5.conf file from the test resources
"without asking". It means the test fails faster and tries to find credentials
elsewhere when not provided. To resolve it, we either have to adapt the test or
we have to try to configure Kerberos without a krb5.conf file (if that is the
cause). Either way, it does not file nice if test outcomes depend on
unnecessary components being on the classpath or not, so maybe we should look
for a third way.
PR title should be OK now.
> Kerberos authentication for gremlin-server
> ------------------------------------------
>
> Key: TINKERPOP-1566
> URL: https://issues.apache.org/jira/browse/TINKERPOP-1566
> Project: TinkerPop
> Issue Type: Improvement
> Components: server
> Reporter: Marc de Lignie
> Priority: Minor
> Labels: security
> Fix For: 3.3.0
>
>
> Gremlin server would benefit from an explicit Kerberos authentication plugin,
> because preparing and maintaining such a plugin is nontrivial. Also, many
> other Apache project provide kerberized services.
> In gremlin-console the standard Krb5LoginModule can be configured.
> Gremlin-server already includes the pluggable Sasl framework that can host
> the proposed Kerberos authentication plugin.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
