[
https://issues.apache.org/jira/browse/HIVE-26071?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17517293#comment-17517293
]
Alexis D. commented on HIVE-26071:
----------------------------------
Hi, i understand from this issue that we can protect hive metastore with a JWT
running in HTTP mode. I have some question related to this topic.
First question:
* Would it be possible to run both protocol at same time (thrift and http?)
Second question :
- What's about the Authenticator interface to get for example the
username or groups in the jwt claims? For what i saw but i am not sur the
Authenticator interface is quite couple with hadoop/kerberos ugi ?
- is there already a design today to allow like storage based
authorization implementation where authenticator can get information of who is
authenticated but not hadoop related?
Thanks!
> JWT authentication for Thrift over HTTP in HiveMetaStore
> --------------------------------------------------------
>
> Key: HIVE-26071
> URL: https://issues.apache.org/jira/browse/HIVE-26071
> Project: Hive
> Issue Type: New Feature
> Components: Standalone Metastore
> Reporter: Sourabh Goyal
> Assignee: Sourabh Goyal
> Priority: Major
>
> HIVE-25575 recently added a support for JWT authentication in HS2. This Jira
> aims to add the same feature in HMS
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
