[
https://issues.apache.org/jira/browse/DRILL-7573?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Dobes Vandermeer updated DRILL-7573:
------------------------------------
Description:
Currently plain login using PAM as its user database. However, in a
containerized or server environment the passwd file is generally kept static,
so some other mechanism for managing users is preferred. Also, pam does not by
default come with an easy to way to check passwords other than via the
passwd/shadow files.
It would be great if there was another authentication method included in drill
that was easier to use in a containerized environment.
Reading the usernames and password from a specific file would probably be the
simplest mechanism.
was:
Currently plain login using PAM as its user database. However, in a
containerized or server environment the passwd file is generally kept static,
so some other mechanism for managing users is preferred. Also, pam does not by
default come with an easy to way to check passwords other than via the
passwd/shadow files.
It would be great if there was another authentication method included in drill
that was easier to use in a containerized environment.
Reading the usernames and password from a specific file would probably be the
simplest mechanism. Or perhaps storing the information in the same location as
the storage plugin configuration, which might allow some user management via
the user interface.
Summary: Support text file for user authentication instead of using PAM
(was: Store user database in zookeeper)
> Support text file for user authentication instead of using PAM
> --------------------------------------------------------------
>
> Key: DRILL-7573
> URL: https://issues.apache.org/jira/browse/DRILL-7573
> Project: Apache Drill
> Issue Type: Improvement
> Components: Server, Web Server
> Affects Versions: 1.17.0
> Reporter: Dobes Vandermeer
> Priority: Major
>
> Currently plain login using PAM as its user database. However, in a
> containerized or server environment the passwd file is generally kept static,
> so some other mechanism for managing users is preferred. Also, pam does not
> by default come with an easy to way to check passwords other than via the
> passwd/shadow files.
> It would be great if there was another authentication method included in
> drill that was easier to use in a containerized environment.
> Reading the usernames and password from a specific file would probably be the
> simplest mechanism.
>
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
