[
https://issues.apache.org/jira/browse/HBASE-14426?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16496625#comment-16496625
]
Pankaj Kumar commented on HBASE-14426:
--------------------------------------
{quote}Better we have a configuration for this like
"hbase.zookeeper.authProvider.scheme" with "sasl" default value.
{quote}
shall I address this?
{quote}Also while creating ZK ACL we should consider the kerberos realm to
append in user,
{quote}
This may not be required if user has configured super users with the realm.
> Authentication provider is hard coded as "auth"
> -----------------------------------------------
>
> Key: HBASE-14426
> URL: https://issues.apache.org/jira/browse/HBASE-14426
> Project: HBase
> Issue Type: Bug
> Components: Zookeeper
> Reporter: Pankaj Kumar
> Assignee: Pankaj Kumar
> Priority: Major
>
> In ZKUtil.createACL(ZooKeeperWatcher zkw, String node, boolean
> isSecureZooKeeper),
> {code}
> if (superUser != null) {
> acls.add(new ACL(Perms.ALL, new Id("auth", superUser)));
> }
> {code}
> Here scheme is presently hard coded as "auth", actually it should be based on
> the auth provider configured at ZK.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
