[jira] [Commented] (IMPALA-11436) Change search bind authentication parameters

Fri, 19 Aug 2022 07:44:36 -0700 


    [ 
https://issues.apache.org/jira/browse/IMPALA-11436?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17581890#comment-17581890
 ] 

ASF subversion and git services commented on IMPALA-11436:
----------------------------------------------------------

Commit 51126259bea2491316decef63d584f713d02a9a6 in impala's branch 
refs/heads/master from Tamas Mate
[ https://gitbox.apache.org/repos/asf?p=impala.git;h=51126259b ]

IMPALA-11436: Change search bind authentication parameters

Impala's search bind authentication intends to mimic Spring's behaviour.
However, the login username and user dn paremeters were swapped for
group searches compared to Spring. This change intends to align these
parameters.

For user search, Spring uses {0} to replace the login username.
Meanwhile, during group search {0} is used to replace the login user dn
and {1} is used to replace the login username.

Testing:
 - Ran LdapSearchBindImpalaShellTest frontend tests

Change-Id: I9808566a348f7c6200b0571fbc05e67f720f2075
Reviewed-on: http://gerrit.cloudera.org:8080/18819
Reviewed-by: Impala Public Jenkins <[email protected]>
Tested-by: Impala Public Jenkins <[email protected]>


> Change search bind authentication parameters
> --------------------------------------------
>
>                 Key: IMPALA-11436
>                 URL: https://issues.apache.org/jira/browse/IMPALA-11436
>             Project: IMPALA
>          Issue Type: Improvement
>          Components: Backend
>    Affects Versions: Impala 4.2.0
>            Reporter: Tamas Mate
>            Assignee: Tamas Mate
>            Priority: Minor
>
> Search bind authentication tries to mimic Spring's behaviour, but in case of 
> group filters spring uses \{1} pattern to replace login user name and \{0} to 
> replace base dn. Impala should follow this behaviour.
> Reference: 
> [https://docs.spring.io/spring-security/site/docs/3.0.x/reference/ldap.html]



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to