Jonathan Wonders created ACCUMULO-4338:
------------------------------------------
Summary: VisibilityConstraint performs Duplicative Authentication
Checks
Key: ACCUMULO-4338
URL: https://issues.apache.org/jira/browse/ACCUMULO-4338
Project: Accumulo
Issue Type: Improvement
Components: tserver
Affects Versions: 1.7.1, 1.7.0, 1.6.5
Reporter: Jonathan Wonders
Priority: Minor
The VisibilityEvaluator created by the VisibilityConstraint uses the tablet
server's SecurityOperations to determine if the user has authorizations for
tokens within the visibility expression. This results in an authentication
check per token that is evaluated and can lead to the following performance
issues.
* flooding of audit logs since each authentication check produces an audit
message
* excessive object creation due to deserialization of user credentials for each
authentication check
* mild contention between client pool threads over the ZooCache
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
