[
https://issues.apache.org/jira/browse/HBASE-19118?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16226206#comment-16226206
]
Reid Chan commented on HBASE-19118:
-----------------------------------
Thanks for reply! [~elserj]
In {{SaslUtil}}
{code}
public boolean matches(String stringQop) {
if (saslQop.equals(stringQop)) {
LOG.warn("Use authentication/integrity/privacy as value for rpc
protection "
+ "configurations instead of auth/auth-int/auth-conf.");
return true;
}
return name().equalsIgnoreCase(stringQop);
}
{code}
So, it will not break up BC.
I'm not sure there's a unit test for kerberized thrift server, but i'm sure
there's an example {{DemoClient}} in hbase-example which i'm using as a test.
> Use SaslUtil to set Sasl.QOP in 'Thrift'
> ----------------------------------------
>
> Key: HBASE-19118
> URL: https://issues.apache.org/jira/browse/HBASE-19118
> Project: HBase
> Issue Type: Bug
> Components: Thrift
> Affects Versions: 1.2.6
> Reporter: Reid Chan
> Assignee: Reid Chan
> Attachments: HBASE-19118.master.001.patch,
> HBASE-19118.master.002.patch, HBASE-19118.master.003.patch
>
>
> In [Configure the Thrift
> Gateway|http://hbase.apache.org/book.html#security.client.thrift], it says
> "set the property {{hbase.thrift.security.qop}} to one of the following three
> values: {{privacy}}, {{integrity}}, {{authentication}}", which would lead to
> failure of starting up a thrift server.
> In fact, the value of {{hbase.thrift.security.qop}} should be {{auth}},
> {{auth-int}}, {{auth-conf}}, according to the documentation of {{Sasl.QOP}}
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
