[jira] [Commented] (HAWQ-1493) Integrate Ranger lookup JAAS configuration in ranger-admin plugin jar

Hongxu Ma (JIRA) Thu, 29 Jun 2017 20:11:19 -0700

    [ 
https://issues.apache.org/jira/browse/HAWQ-1493?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16069401#comment-16069401
 ]


Hongxu Ma commented on HAWQ-1493:
---------------------------------

Only do `setProperty("java.security.auth.login.config")` doesn't work.
Because Ranger do some hacks by 
org.apache.ranger.audit.utils.InMemoryJAASConfiguration, we should also use 
this class as Ranger.


> Integrate Ranger lookup JAAS configuration in ranger-admin plugin jar
> ---------------------------------------------------------------------
>
>                 Key: HAWQ-1493
>                 URL: https://issues.apache.org/jira/browse/HAWQ-1493
>             Project: Apache HAWQ
>          Issue Type: Sub-task
>          Components: Security
>            Reporter: Hongxu Ma
>            Assignee: Hongxu Ma
>             Fix For: 2.3.0.0-incubating
>
>
> For support ranger lookup a kerberized HAWQ, we modify java.security file and 
> add a .java.login.config file into ranger account now.
> But both of the two files are global, have influenced other program, so we 
> need integrate the JAAS configuration in a private scope.
> After investigation, `setProperty("java.security.auth.login.config")` in 
> ranger-admin plugin code is a good solution.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Commented] (HAWQ-1493) Integrate Ranger lookup JAAS configuration in ranger-admin plugin jar

Reply via email to