[
https://issues.apache.org/jira/browse/HBASE-11540?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14076355#comment-14076355
]
Jimmy Xiang commented on HBASE-11540:
-------------------------------------
The content looks good, except the section header: server-side authentication,
which is a little confusing to me. Before this feature, a secure thrift server
accesses the HBase as a fixed user. The thrift server doesn't authenticate the
thrift clients. With this feature, the thrift server can authenticate the
client and access the HBase on behalf of the the client user as a proxy user.
The thrift server is a server to the thrift client, but it is a client to the
HBase. Probably it is better to call it "Thrift gateway" instead of
"Server-side"?
Another thing is that this feature is not available for framed transport
because SASL doesn't work with thrift framed transport for now.
> Document HBASE-11474
> --------------------
>
> Key: HBASE-11540
> URL: https://issues.apache.org/jira/browse/HBASE-11540
> Project: HBase
> Issue Type: Bug
> Components: documentation
> Reporter: Misty Stanley-Jones
> Assignee: Misty Stanley-Jones
> Priority: Critical
> Attachments: HBASE-11540.patch
>
>
--
This message was sent by Atlassian JIRA
(v6.2#6252)
