charlesconnell opened a new pull request, #5644: URL: https://github.com/apache/hbase/pull/5644
At my employer we plan on using a coprocessor to log information about some requests to HBase. For this to be useful to us, we need to know who each request is coming from. We use HBase's TLS support with mutual authentication to authenticate clients. I'd like a way to expose the client certificate used on a request to coprocessors. For setups using Kerberos authentication, RpcCall exposes the Kerberos principal shortname via `getRequestUser()`, so this would be the TLS equivalent to that. I've tested this patch applied to 2.5.x in my company's infrastructure. I found that in order for this patch to be useful to me, I also need netty to fix a related bug which I reported as https://github.com/netty/netty/issues/13796. This doesn't need to block this PR. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
