[jira] [Commented] (IMPALA-10846) Skip Authentication for connection with trusted auth header

Wed, 11 Aug 2021 23:52:07 -0700 


    [ 
https://issues.apache.org/jira/browse/IMPALA-10846?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17397865#comment-17397865
 ] 

ASF subversion and git services commented on IMPALA-10846:
----------------------------------------------------------

Commit 3d365276ea00f349df3629944b731eb4408d2c4f in impala's branch 
refs/heads/master from wzhou-code
[ https://gitbox.apache.org/repos/asf?p=impala.git;h=3d36527 ]

IMPALA-10846: Skip Authentication for connection with trusted auth header

Adds the ability to skip authentication for connection over hs2 HTTP
endpoint or the http webserver endpoint with trusted auth header in
connection string. The trusted auth header can be specified using the
newly added "--trusted_auth_header" startup flag. Note this still
requires the client to specify a username via a basic auth header.

Testing:
 - Added unit tests for both the hs2 http endpoint and the webserver
   http endpoint.
 - Passed core tests.

Change-Id: I7103012bc9cf9dfdc9c184af3a281526d8127a31
Reviewed-on: http://gerrit.cloudera.org:8080/17759
Reviewed-by: Wenzhe Zhou <[email protected]>
Tested-by: Impala Public Jenkins <[email protected]>


> Skip Authentication for connection with trusted auth header
> -----------------------------------------------------------
>
>                 Key: IMPALA-10846
>                 URL: https://issues.apache.org/jira/browse/IMPALA-10846
>             Project: IMPALA
>          Issue Type: Improvement
>          Components: Backend
>    Affects Versions: Impala 4.1.0
>            Reporter: Wenzhe Zhou
>            Assignee: Wenzhe Zhou
>            Priority: Major
>             Fix For: Impala 4.1.0
>
>
> In the scenarios where the connections are authenticated by an intermediate 
> proxy before the requests land on Impala, Impala could avoid the 
> authentication again.
> We need to add the ability to skip authentication for connection over HTTP 
> with trusted auth header in connection string. The trusted auth header can be 
> specified using the "--trusted_auth_header" startup flag.
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to