Alexey Serbin has submitted this change and it was merged. ( http://gerrit.cloudera.org:8080/18471 )
Change subject: plumb JWT authentication into clients ...................................................................... plumb JWT authentication into clients This change plumbs the JWT authentication into the client and into the client negotiation (the JWTVerifier is set when building the Messenger). There following new flags are added: * enable_jwt_token_auth * jwt_validate_signature (unsafe) * jwt_allow_without_tls (unsafe) * jwks_file_path * jwks_url If 'enable_jwt_token_auth' is set to true, then either 'jwks_file_path' or 'jwks_url' has to be set, also both cannot be set at the same time. Co-authored-by: Andrew Wong <[email protected]> Change-Id: Ibdfc2640c047a2e3bb5ea03aea4439cea2532e23 Reviewed-on: http://gerrit.cloudera.org:8080/18471 Tested-by: Kudu Jenkins Reviewed-by: Alexey Serbin <[email protected]> --- M src/kudu/client/client.cc M src/kudu/rpc/client_negotiation.cc M src/kudu/security/tls_handshake.cc M src/kudu/security/tls_handshake.h M src/kudu/server/server_base.cc M src/kudu/util/jwt-util-test.cc A src/kudu/util/jwt_test_certs.h 7 files changed, 460 insertions(+), 366 deletions(-) Approvals: Kudu Jenkins: Verified Alexey Serbin: Looks good to me, approved -- To view, visit http://gerrit.cloudera.org:8080/18471 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: merged Gerrit-Change-Id: Ibdfc2640c047a2e3bb5ea03aea4439cea2532e23 Gerrit-Change-Number: 18471 Gerrit-PatchSet: 22 Gerrit-Owner: Andrew Wong <[email protected]> Gerrit-Reviewer: Alexey Serbin <[email protected]> Gerrit-Reviewer: Attila Bukor <[email protected]> Gerrit-Reviewer: Kudu Jenkins (120) Gerrit-Reviewer: Marton Greber <[email protected]> Gerrit-Reviewer: Tidy Bot (241) Gerrit-Reviewer: Wenzhe Zhou <[email protected]> Gerrit-Reviewer: Zoltan Chovan <[email protected]>
