[jira] [Commented] (CALCITE-1539) Enable proxy access to Avatica server for third party on behalf of end users

Tue, 25 Apr 2017 12:32:17 -0700 

    [ 
https://issues.apache.org/jira/browse/CALCITE-1539?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15983488#comment-15983488
 ] 

ASF GitHub Bot commented on CALCITE-1539:
-----------------------------------------

GitHub user joshelser opened a pull request:

    https://github.com/apache/calcite-avatica/pull/8

    CALCITE-1539 Support remote user extraction from HTTP query string 
parameters

    Builds on @wancy's support in 
https://github.com/apache/calcite-avatica/pull/6
    
    * Changes the end-to-end test to run JSON and PROTOBUF serializations via 
JUnit parameterization
    * Actually sets the proper HTTP status codes for 401 and 403 (previously, 
just returned strings as HTTP/500)
    * Created a new exception to enable the above
    * Simplified some things in the test case ("useDoAs" was contrived).

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/joshelser/calcite-avatica 1539-proxy-doAs

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/calcite-avatica/pull/8.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #8
    
----
commit c0e14b11897a51eddcfb5042217fa4c1acdafe63
Author: shiwang <shiw...@us.ibm.com>
Date:   2017-04-11T22:40:26Z

    [CALCITE-1539] Enable proxy access to Avatica server for third party on 
behalf of end users

commit 0e7720579056379882b20c73e8ebec63713bed0f
Author: Josh Elser <els...@apache.org>
Date:   2017-04-25T17:45:39Z

    [CALCITE-1539] Set proper HTTP status codes on failure
    
    Also, make the new test parameterized for each serialization type

----


> Enable proxy access to Avatica server for third party on behalf of end users
> ----------------------------------------------------------------------------
>
>                 Key: CALCITE-1539
>                 URL: https://issues.apache.org/jira/browse/CALCITE-1539
>             Project: Calcite
>          Issue Type: Improvement
>          Components: avatica
>            Reporter: Jerry He
>            Assignee: Shi Wang
>             Fix For: avatica-1.10.0
>
>         Attachments: 
> 0001-CALCITE-1539-Enable-proxy-access-to-Avatica-server-f.patch, 
> 0001-CALCITE-1539.patch, 0001-CALCITE-1539_without_testcase.patch
>
>
> We want to enable proxy access to Avatica server from an end user, but the 
> end user comes in via a third party impersonation.  For example, Knox and Hue.
> The Knox server user conveys the end user to Avatica.
> Similar things have been done for HBase Rest Sever HBASE-9866 and Hive Server 
> HIVE-5155



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

Reply via email to