[ https://issues.apache.org/jira/browse/SENTRY-1378?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15362996#comment-15362996 ]
Sravya Tirukkovalur commented on SENTRY-1378: --------------------------------------------- +1, changes look good to me. Seems like a new RB request was created, can you update the link here? > Login fails for a secure Sentry Web UI > -------------------------------------- > > Key: SENTRY-1378 > URL: https://issues.apache.org/jira/browse/SENTRY-1378 > Project: Sentry > Issue Type: Bug > Reporter: Rahul Sharma > Assignee: Rahul Sharma > Attachments: SENTRY-1378.0-sentry-ha-redesign.patch, > SENTRY-1378.1-sentry-ha-redesign.patch, SENTRY-1378.3-sentry-ha-redesign.patch > > > Say I login with a principal of the form "HTTP/<hostname>@Domain . So the > http request has the user HTTP . Now for the property > sentry.service.web.authentication.allow.connect.users , we change the list to > a lowercase and hence the doFilter method in SentryAuthFilter throws a > Unauthorized user status code: 403 exception. > We need to make the user in the http request to lower case to compare with > set of users present in the property > sentry.service.web.authentication.allow.connect.users. -- This message was sent by Atlassian JIRA (v6.3.4#6332)