Thomas Tauber-Marshall has posted comments on this change. ( http://gerrit.cloudera.org:8080/15570 )
Change subject: IMPALA-2563: Support LDAP search bind operations ...................................................................... Patch Set 3: > (1 comment) > > QQ before I review in depths so I understand the context. > > This change applies to LDAP auth with any endpoint right? I.e. if a > group is excluded by the filter, they can't connect to HS2 or the > webserver or any endpoint where ldap is enabled. > > For the webserver auth, does this mean that we'll need an > additional flag to control which groups or users can connect to the > webserver? Right so the intention here is that https://gerrit.cloudera.org/#/c/15538/ will add flags like --webserver_ldap_group_filter that will allow for doing things like restricting webserver authentication to an admin group. -- To view, visit http://gerrit.cloudera.org:8080/15570 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: Impala-ASF Gerrit-Branch: master Gerrit-MessageType: comment Gerrit-Change-Id: I7502a96e9a3c16faa67c03ffac54df2bdebbca8c Gerrit-Change-Number: 15570 Gerrit-PatchSet: 3 Gerrit-Owner: Thomas Tauber-Marshall <[email protected]> Gerrit-Reviewer: Impala Public Jenkins <[email protected]> Gerrit-Reviewer: Thomas Tauber-Marshall <[email protected]> Gerrit-Reviewer: Tim Armstrong <[email protected]> Gerrit-Comment-Date: Fri, 27 Mar 2020 23:35:38 +0000 Gerrit-HasComments: No
