[ https://issues.apache.org/jira/browse/ZOOKEEPER-2843?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16107234#comment-16107234 ]
Lionel Cons commented on ZOOKEEPER-2843: ---------------------------------------- Adding this functionality requires very little code modification. See the attached {{ZOOKEEPER-2843.patch}}. Would it be possible to get this in 3.4.11? > auth_to_local should support reading rules from a file > ------------------------------------------------------ > > Key: ZOOKEEPER-2843 > URL: https://issues.apache.org/jira/browse/ZOOKEEPER-2843 > Project: ZooKeeper > Issue Type: Improvement > Reporter: Lionel Cons > Attachments: ZOOKEEPER-2843.patch > > > The current handling of {{zookeeper.security.auth_to_local}} in > {{KerberosName.java}} only support rules given directly as the property value. > These rules must therefore be given on the command line and: > * must be escaped properly to avoid shell expansion > * are visible in the {{ps}} output > It would be much better to put these rules in a file and pass the file path > as the property value. We would then use something like > {{-Dzookeeper.security.auth_to_local=file:/etc/zookeeper/rules}}. > Note that using the {{file:}} prefix allows keeping backward compatibility. -- This message was sent by Atlassian JIRA (v6.4.14#64029)