[jira] [Commented] (ZOOKEEPER-1497) Allow server-side SASL login with JAAS configuration to be programmatically set (rather than only by reading JAAS configuration file)

[Hudson (JIRA)]

    [ 
https://issues.apache.org/jira/browse/ZOOKEEPER-1497?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13443959#comment-13443959
 ] 

Hudson commented on ZOOKEEPER-1497:
-----------------------------------

Integrated in ZooKeeper-trunk #1663 (See 
[https://builds.apache.org/job/ZooKeeper-trunk/1663/])
    ZOOKEEPER-1497. Allow server-side SASL login with JAAS configuration to be 
programmatically set (rather than only by reading JAAS configuration file) 
(Matteo Bertozzi via phunt) (Revision 1378285)

     Result = SUCCESS
phunt : http://svn.apache.org/viewcvs.cgi/?root=Apache-SVN&view=rev&rev=1378285
Files : 
* /zookeeper/trunk/CHANGES.txt
* /zookeeper/trunk/src/java/main/org/apache/zookeeper/Environment.java
* 
/zookeeper/trunk/src/java/main/org/apache/zookeeper/client/ZooKeeperSaslClient.java
* 
/zookeeper/trunk/src/java/main/org/apache/zookeeper/server/NIOServerCnxnFactory.java
* 
/zookeeper/trunk/src/java/main/org/apache/zookeeper/server/NettyServerCnxnFactory.java
* 
/zookeeper/trunk/src/java/main/org/apache/zookeeper/server/ServerCnxnFactory.java
* 
/zookeeper/trunk/src/java/main/org/apache/zookeeper/server/ZooKeeperSaslServer.java
* 
/zookeeper/trunk/src/java/main/org/apache/zookeeper/server/auth/SaslServerCallbackHandler.java
* /zookeeper/trunk/src/java/test/org/apache/zookeeper/JaasConfiguration.java
* /zookeeper/trunk/src/java/test/org/apache/zookeeper/test/ClientBase.java
* 
/zookeeper/trunk/src/java/test/org/apache/zookeeper/test/SaslAuthDesignatedServerTest.java

                
> Allow server-side SASL login with JAAS configuration to be programmatically 
> set (rather than only by reading JAAS configuration file)
> -------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: ZOOKEEPER-1497
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1497
>             Project: ZooKeeper
>          Issue Type: Improvement
>          Components: server
>    Affects Versions: 3.4.3, 3.5.0
>            Reporter: Matteo Bertozzi
>            Assignee: Matteo Bertozzi
>              Labels: security
>             Fix For: 3.4.4, 3.5.0
>
>         Attachments: ZOOKEEPER-1497-v1.patch, ZOOKEEPER-1497-v2.patch, 
> ZOOKEEPER-1497-v3.patch, ZOOKEEPER-1497-v4.patch, ZOOKEEPER-1497-v5.patch
>
>
> Currently the CnxnFactory checks for "java.security.auth.login.config" to 
> decide whether or not enable SASL.
> * zookeeper/server/NIOServerCnxnFactory.java
> * zookeeper/server/NettyServerCnxnFactory.java
> ** configure() checks for "java.security.auth.login.config"
> *** If present start the new Login("Server", SaslServerCallbackHandler(conf))
> But since the SaslServerCallbackHandler does the right thing just checking if 
> getAppConfigurationEntry() is empty, we can allow SASL with JAAS 
> configuration to be programmatically just checking weather or not a 
> configuration entry is present instead of "java.security.auth.login.config".
> (Something quite similar was done for the SaslClient in ZOOKEEPER-1373)

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira