As it is Apache Licensed - it can be used anywhere freely.
:)
On Mon, Apr 14, 2014 at 4:09 PM, Pam Wonson pwon...@hortonworks.com wrote:
That's great can I use it for the overview section :)
Sent from my iPhone
On Apr 14, 2014, at 12:32 PM, larry mccay lmc...@apache.org wrote:
Hi Folks
The KEYS file can be found at the following location:
https://dist.apache.org/repos/dist/release/knox/KEYS
Please use that to verify the signature of the release.
On Mon, Apr 14, 2014 at 10:41 PM, Kevin Minder kevin.min...@hortonworks.com
wrote:
A candidate for the Apache Knox 0.4.0 release
, verified signatures and hashes.
2) Built from source and ran unit tests.
3) Verified .zip install using WebHdfs, WebHCat, Ooize, HBase and Hive
groovy scripts against HDP Sandbox 2.1.
On 4/15/14 10:00 AM, larry mccay wrote:
The KEYS file can be found at the following location:
https
Waho!!!
On Mon, Apr 21, 2014 at 2:45 PM, Kevin Minder
kevin.min...@hortonworks.comwrote:
Infra has fixed this and the 0.4.0 bits are showing up on mirrors.
For example:
http://apache.cs.utah.edu/knox/
On 4/21/14 9:22 AM, Kevin Minder wrote:
I wasn't sure if releases in
The Apache Knox team is proud to announce the release of Apache Knox
0.4.0 - our first release as an Apache TLP!
Apache Knox is a REST API Gateway for providing secure access to the data
and processing resources of Hadoop clusters. More details on Apache Knox
can be found at:
Interesting thread on common and HDFS lists. Seems it won't likely make it
into webhdfs but it is an interesting usecase for Knox...
-- Forwarded message --
From: Nikita Makeev whale2@gmail.com
Date: Apr 24, 2014 1:09 PM
Subject: Text cmd in webhdfs
To:
Hello Marton -
Thank you for posting to the dev list!
Kevin has been on the road this week and I believe today is a travel day -
so he will likely be unavailable most of the day.
I think that your thinking is mostly inline with what we have considered
while investigating OAuth support for Knox
, larry mccay larry.mc...@gmail.com wrote:
Hello Marton -
Thank you for posting to the dev list!
Kevin has been on the road this week and I believe today is a travel day
- so he will likely be unavailable most of the day.
I think that your thinking is mostly inline with what we have
Let's try from this email address
-- Forwarded message --
From: Larry McCay lmc...@hortonworks.com
Date: Fri, May 16, 2014 at 3:18 PM
Subject: Fwd: Reg HttpFS
To: larry mccay larry.mc...@gmail.com
-- Forwarded message --
From: Larry McCay lmc
Here is a good article on using Oltu in JAX-RS to authenticate a google
user and acquire user profile information:
http://carminedimascio.com/2014/02/google-oauth2-and-jax-rs/
Note the use of JWT as well.
on a patch for this request here:
https://github.com/ekohlwey/knox/tree/KNOX-250
And I've also included some thoughts on the issue under its JIRA ticket:
https://issues.apache.org/jira/browse/KNOX-250
Any feedback is much appreciated!
On Mon, Feb 10, 2014 at 11:55 AM, larry mccay larry.mc
Components: Server
Reporter: Larry McCay
Assignee: Larry McCay
Fix For: 0.5.0
Currently, there is a configuration element for the path to forward the
incoming request to. This should be derived from the default topology file
name not a separate
All -
As I begin to add the beginnings of the management API to Knox, it occurs
to me that certain resource URLs will require/allow anonymous access.
For instance, admin/api/v1/version shouldn't require authentication - since
it may be used to determine which contract to use or some other
as long
as you have declared the correct packages. This assumption would need to
be verified though.
On 6/20/14 6:14 PM, larry mccay wrote:
All -
As I begin to add the beginnings of the management API to Knox, it occurs
to me that certain resource URLs will require/allow anonymous access
an anonymous pattern/chain.
On 6/20/14 6:59 PM, larry mccay wrote:
That is exactly what I am describing.
I'll have to dig into the jersey handoff in order to understand though I
think you are saying that the patterns aren't used to route to any
particular filter chain. Not sure I understand
All -
I have been thinking about how to go about introducing branches for POCs or
features that are not quite ready for prime time.
Kevin and I have discussed it a bit offline and have a high level proposal
for it.
We can create feature branches that are named after jira that represent the
Terrific!
On Mon, Jul 28, 2014 at 2:08 PM, Ed Kohlwey ekohl...@gmail.com wrote:
Makes sense to me - I'll incorporate these changes into my approach.
Thanks!
On Thu, Jul 24, 2014 at 11:58 AM, larry mccay larry.mc...@gmail.com
wrote:
Hi Ed -
The issue is more accurately described
Folks -
I feel as though we should uptake the policy that is used for Hadoop common
commits where every commit includes a record of the change in CHANGES.txt.
This will make the release process easier since we won't have to backfill
all of the changes at release candidate creation time.
Also,
on time to
integrate it back into the master branch and make some updates that Larry
has suggested, but hopefully I can in the coming week or two.
On Wed, Aug 6, 2014 at 2:44 PM, larry mccay larry.mc...@gmail.com wrote:
Folks -
I'd like to summarize a brief conversation that Kevin and I had today
that will make for a
great offering and we need to plan in order to bring them in smoothly.
thanks,
--larry
On Thu, Aug 7, 2014 at 12:55 PM, larry mccay larry.mc...@gmail.com wrote:
We can certainly consider that, Ed!
The plan is to branch for the 0.5.0 release around the end of the month.
If we
All,
We will be branching for 0.5.0 at the end of today (9/2) if there are no
objections.
Once that is done, all changes for 0.5.0 will need to be made first on
master and then picked into the 0.5.0 branch.
Let me know if you have any questions or concerns about this.
--larry
All -
In order to describe the installation of a production deployment vs a demo
deployment, I would like to separate the out-of-the-box install from demo
setup.
Currently, when you unpack the knox archive, the conf directory includes a
couple artifacts that are demo specific and are not likely
?
On 9/2/14 11:11 AM, larry mccay wrote:
All -
In order to describe the installation of a production deployment vs a demo
deployment, I would like to separate the out-of-the-box install from demo
setup.
Currently, when you unpack the knox archive, the conf directory includes a
couple
Everyone -
We have officially branched for the 0.5.0 release and will require commits
to both master and to v0.5.0 for every change that needs to be in the 0.5.0
release.
An easy way to do this is by committing to master then cherry-picking back
to 0.5.0.
You will notice that master now builds
All -
Pascal Oliva has filed KNOX-242 and provided a patch contribution for
replacing the use of the sun/oracle proprietary classes with the use of the
Bouncy Castle library.
With reported plans from oracle to limit or block access to the old sun
classes it seems that we need to make a move here
, Sep 15, 2014 at 2:06 PM, larry mccay larry.mc...@gmail.com
wrote:
All -
Pascal Oliva has filed KNOX-242 and provided a patch contribution for
replacing the use of the sun/oracle proprietary classes with the use of
the
Bouncy Castle library.
With reported plans from oracle to limit
scripting around that for standing up a
test/demo environment easily.
On Mon, Sep 15, 2014 at 5:19 PM, larry mccay larry.mc...@gmail.com wrote:
I've considered this, Vinay.
I'm not sure the value of providing a sun based implementation given that
the classes are going away
without any tools for changing the
keystores or master password etc.
On Mon, Sep 15, 2014 at 5:43 PM, larry mccay larry.mc...@gmail.com wrote:
Another alternative would be to remove the auto generation of a
self-signed cert from the server runtime and require the use of the admin's
favorite key
+1
On Tue, Sep 16, 2014 at 10:38 PM, Kevin Minder kevin.min...@hortonworks.com
wrote:
Hi Everyone,
I've made the change in master to switch the groupId in all of the pom.xml
files from org.apache.hadoop to org.apache.knox.
See https://issues.apache.org/jira/browse/KNOX-424
The question
All -
A candidate for the Apache Knox 0.5.0 release is available at:
https://dist.apache.org/repos/dist/dev/knox/knox-0.5.0/
The release candidate is a zip archive of the sources in:
https://git-wip-us.apache.org/repos/asf/knox.git
Branch v0.5.0 (git checkout -b v0.5.0)
The SHA1 checksum of
If this is a blocker for 0.5.0 then we should cancel the current vote for
0.5.0 rc0.
On Wed, Sep 24, 2014 at 10:02 AM, Sumit Gupta (JIRA) j...@apache.org
wrote:
[
]
pascal oliva commented on KNOX-422:
---
Larry McCay, did you run the tests in your side with KNOX-422-2.patch ?
Build break with JVM IBM JAVA
-
Key: KNOX-422
URL: https://issues.apache.org
All -
As a heads up, I will be assembling a release candidate for a v0.5.0
release this weekend and potentially into Monday.
I believe that the blocker issues have been resolved as well as a number of
other minor fixes that cropped up in between the last rc and the current
state.
I will be
All -
As a heads up, I will be assembling a release candidate for a v0.5.0
release this weekend and potentially into Monday.
I believe that the blocker issues have been resolved as well as a number of
other minor fixes that cropped up in between the last rc and the current
state.
I will be
All -
As a heads up, I will be assembling a release candidate for a v0.5.0
release this weekend and potentially into Monday.
I believe that the blocker issues have been resolved as well as a number of
other minor fixes that cropped up in between the last rc and the current
state.
I will be
All -
A new candidate for the Apache Knox 0.5.0 release is available at:
https://dist.apache.org/repos/dist/dev/knox/knox-0.5.0/
The release candidate is a zip archive of the sources in:
https://git-wip-us.apache.org/repos/asf/knox.git
Branch v0.5.0 (git checkout -b v0.5.0)
The SHA1 checksum of
tests successfully.
+1 Release this package as Apache Knox 0.5.0
On Sun, Oct 26, 2014 at 12:48 PM, larry mccay lmc...@apache.org wrote:
All -
A new candidate for the Apache Knox 0.5.0 release is available at:
https://dist.apache.org/repos/dist/dev/knox/knox-0.5.0/
The release candidate
All -
Now that we have delivered our 0.5.0 release, we need to consider our next
couple releases.
We should first consider preparing for an 0.5.1 release to accommodate any
issues that crop up with the latest available release.
I propose (1): creating a branch within the next day or so. This
testing from gmail account.
out sooner rather than an 0.5.2. Now of course if
we find some non-feature critical fixes that we want to bundle into an
0.5.2 that could make sense but not based on any cadence.
On 11/7/14 12:17 PM, larry mccay wrote:
All -
Now that we have delivered our 0.5.0 release, we need
test
A candidate for the Apache Knox 0.5.1 release is available at:
https://dist.apache.org/repos/dist/dev/knox/knox-0.5.1/
The release candidate is a zip archive of the sources in:
https://git-wip-us.apache.org/repos/asf/knox.git
Branch v0.5.1 (git checkout -b v{gateway-version})
The KEYS file for
All -
The Project Management Committee (PMC) for Apache Knox
has asked Sumit Gupta to become a committer and PMC member
and we are pleased to announce that they have accepted.
Sumit added significantly to the 0.5.0 Apache Knox release by contributing
both bug fixes and full features to the
is fixed
+1 binding
On Fri, Dec 5, 2014 at 8:44 AM, larry mccay lmc...@apache.org wrote:
A candidate for the Apache Knox 0.5.1 release is available at:
https://dist.apache.org/repos/dist/dev/knox/knox-0.5.1/
The release candidate is a zip archive of the sources in:
https://git-wip-us.apache.org
Thanks!
On Tue, Jan 20, 2015 at 11:40 PM, Kevin Minder kevin.min...@hortonworks.com
wrote:
Hi Everyone,
I wanted to quickly capture my notes on publishing to the Apache Maven
repo. I dumped this into the release process wiki too. I did this for
0.5.1 so this should be the last step of
Good catch! Please do provide a patch.
Thank you for your contributions!
On Jan 21, 2015 7:58 AM, J.Andreina (JIRA) j...@apache.org wrote:
[
This sounds like an excellent step forward for the deployment machinery of
Knox - good work!
It will also provide even greater compatibility with Hadoop platform
deployments.
We should continue this work to define collections of versioned services as
a single Hadoop platform definition -
:32 PM, larry mccay lmc...@apache.org wrote:
I have downloaded the release candidate and:
* checked the CHANGES file
* verified the signature and hashes
* built from source
* run unit tests
* manually tested webhdfs
* manually tested webhcat
* ran the wordcount example
* verified
The vote for releasing 0.5.1 received the following votes:
+1 (binding):
Kevin Minder
Sumit Gupta
Larry McCay
+1 (non-binding):
none
-1:
none
With 3 positive binding votes and no negative votes - the release vote
passes.
Thanks to everyone for making this release happen!
--larry
On Sun, Jan
Hi Dimple -
I don't recall hearing of anyone with an issue like this - I think that in
order to help you that I will need a bit more information:
1. What are the APIs that you have going through Knox and routing service
are you using to do this with?
2. Knox doesn't typically do redirection to
. In
either case, I can always double merge/cherry pick, so no big deal. Let¹s
branch.
Sumit.
On 3/22/15, 11:27 AM, larry mccay lmc...@apache.org wrote:
All -
We have a number of interesting features in master that enhance the
developer's ability to extend Apache Knox with new routing services
All -
I think we need to determine the best way forward for our trusted proxy
support.
Today, we have the details of the various ?doAs= vs ?username= parameters
in the identity assertion httpServletRequestWrapper.
Some services are coming into the fold with new or just plain different
query
All -
I see that KNOX-584 was filed by Zac to address this but I wanted to make
sure that everyone is aware that we have some instability in the jenkins
builds.
See: https://builds.apache.org/job/Knox-master-verify/701/
We have 3 failures there:
1. in CLIServiceTest - covered by KNOX-584:
+1 :)
On Wed, Aug 12, 2015 at 12:16 PM, Sumit Gupta sumit.gu...@hortonworks.com
wrote:
Agreed on XForwardHeaders related tests. I can take those on and I will
file a JIRA to track it.
Thanks Zac for taking the CLIServiceTest failure.
Sumit.
On 8/12/15, 12:11 PM, larry mccay lmc
Key: KNOX-564
URL: https://issues.apache.org/jira/browse/KNOX-564
Project: Apache Knox
Issue Type: Bug
Reporter: Larry McCay
Assignee: Larry McCay
Fix For: 0.7.0
Deploying a topology
Works for me.
On Tue, Nov 10, 2015 at 1:46 PM, Kevin Minder
wrote:
> Some of you might not be aware that we have an github mirror at
> https://github.com/apache/knox
>
> So far we have’t really done much with it but I see that other Apache
> projects use their
; topology file you were attempting to configure it as an provider with
> role
> > authentication.
> >
> >
> >
> >
> > On 11/10/15, 11:32 AM, "larry mccay" <lmc...@apache.org> wrote:
> >
> > >Let's get you past the error that y
t actually defines the classpath of the final packaged server. If you
> take a look at that you will see it references all of the providers that
> are intended to be included by default. Try adding yours to the
> dependencies.
>
>
>
>
> On 11/12/15, 7:49 AM, "larry mccay" &
gt;
> Currently, I hardcoded a FacebookClient for Facebook authentication, but we
> should be able to pass the appropriate client like Facebook or SAML.
> Basically, we could do that using filter properties: facebook.key +
> facebook.secret means we use Facebook authentication with the ap
.
On Tue, Nov 3, 2015 at 2:00 PM, larry mccay <larry.mc...@gmail.com> wrote:
> Good point...
>
> So, we couldn't have admin and knoxsso APIs in the same topology.
> We could have other fully qualified services/URLs in the same topology
> though - like WEBHDFS.
>
> Thi
on has a service with a resource for WebSSO flows
> for browsers/cookies. Right?
>
>
> On 11/3/15, 7:36 AM, "larry mccay" <lmc...@apache.org> wrote:
>
> >inline...
> >
> >
> >On Mon, Nov 2, 2015 at 11:31 PM, Kevin Minder <
> kevin.min...@horton
this - thoughts?
On Tue, Nov 3, 2015 at 9:49 AM, larry mccay <larry.mc...@gmail.com> wrote:
> Agreed.
>
> I'm not sure that you would name your topology that way if you intended to
> use it for REST though.
> We could certainly create credential collectors in the client sh
ents we integrate with certainly
> don’t use it. So from that perspective, direct use of log4j if that is
> your choice isn’t going to cause any major problems.
>
>
>
>
>
> On 11/13/15, 8:40 AM, "larry mccay" <lmc...@apache.org> wrote:
>
> >Hi Jérôme -
> >
ents available for
> JWT tokens and cookies? And how?
>
>
> 5) Logs: I see in every descriptor the use of Messages and MessagesFactory:
> I can't use log4j directly, can I? What's the expected benefits using this
> Messages layer?
>
>
> Thanks.
> Best regards,
> Jérôm
This strategy sounds great to me.
Abstracting the config object makes sense as well - even if just making it
a factoryContext type of thing would be better.
I'm not sure that we need gateway level configurability though a default in
the service definition would be good.
Perhaps, the ability to
tonworks.com/nexus/content/groups/public/
>
> Does this repository have access to the remote Snapshots Sonatype repo?
>
>
>
> 2015-12-02 16:16 GMT+01:00 larry mccay <larry.mc...@gmail.com>:
>
> > hmmm - I used:
> >
> > mvn clean install -DskipTests=
gateway-provider-security-pac4j doesn't build - do you have a pending
change for your pom.xml or something?
On Wed, Dec 2, 2015 at 7:02 AM, larry mccay <larry.mc...@gmail.com> wrote:
> Hi Jérôme -
>
> Yes, that is the flow that I imagined as I walked through it yesterda
4a0b285078036R123
>
> If you use Ant for the build, there is maybe a glitch to find the Sonatype
> Maven repo.
>
> Thanks.
> Best regards,
> Jérôme
>
>
> 2015-12-02 16:06 GMT+01:00 larry mccay <larry.mc...@gmail.com>:
>
> > Oh - do I need to build j2e-pac4 lo
Wed, Dec 2, 2015 at 10:05 AM, larry mccay <larry.mc...@gmail.com> wrote:
> gateway-provider-security-pac4j doesn't build - do you have a pending
> change for your pom.xml or something?
>
> On Wed, Dec 2, 2015 at 7:02 AM, larry mccay <larry.mc...@gmail.com> wrote:
that handle it.
This is quite cool, Jérôme!
On Wed, Dec 2, 2015 at 10:41 AM, larry mccay <larry.mc...@gmail.com> wrote:
> That was it - thanks!
>
> On Wed, Dec 2, 2015 at 10:20 AM, Jérôme LELEU <lel...@gmail.com> wrote:
>
>> This is my exact command line: mvn -Prelease clean
Jérôme -
If you would like to add that change as part of your patch or as a
separately filed JIRA to fix a bug that would certainly be welcomed.
Otherwise, I can do it.
Let me know.
thanks,
--larry
On Wed, Dec 2, 2015 at 11:44 AM, larry mccay <larry.mc...@gmail.com> wrote:
> Oka
Fixed in https://issues.apache.org/jira/browse/KNOX-636.
On Wed, Dec 2, 2015 at 12:42 PM, larry mccay <larry.mc...@gmail.com> wrote:
> Sure - I can file a JIRA and commit a fix.
>
> The secret generation should be done in one instance and replicated across
> others.
> This r
Javadoc. After that, you can review the pull request more
> completely.
>
> What do you expect for the documentation?
>
> Notice that pac4j dependencies are still snapshots, but they will be
> released in a week or two.
>
> Thanks.
> Best regards,
> Jérôme
oc. After that, you can review the pull request more
> completely.
>
> What do you expect for the documentation?
>
> Notice that pac4j dependencies are still snapshots, but they will be
> released in a week or two.
>
> Thanks.
> Best regards,
> Jérôme
>
>
> 20
4j versions in Knox to
> benefit from the new feature.
> The good thing is that if someone related to the CAS server does the same
> thing for CAS (in pac4j), you will automatically get it when you'll upgrade
> pac4j.
>
> To go even further, replacing LDAP Shiro authentication is jus
Thanks, Sumit.
Looking forward to the 0.7.0 release!
On Tue, Dec 8, 2015 at 4:30 PM, sumit gupta wrote:
> Hi everyone,
>
> A v0.7.0 branch was created today from master in order to stabilize
> the code base in preparation for the next release. There have been a
> significant
knox, start in debug, start
> the debugger in your favorite IDE, call:
> https://127.0.0.1:8443/gateway/sandbox/webhdfs/v1/tmp?op=LISTSTATUS. The
> login must be the same as the password on the CAS server (an online one).
> Then a breakpoint in the Pac4jIdentityAdapter line 63 is a
s the encrypted cookies are shared.
>
> Thanks.
> Best regards,
> Jérôme
>
>
>
>
> 2015-11-25 14:18 GMT+01:00 larry mccay <larry.mc...@gmail.com>:
>
> > inline...
> >
> > On Wed, Nov 25, 2015 at 5:04 AM, Jérôme LELEU <lel...@gmail.com&
of the hostname
and use the remainder (with leading dot) as the cookie domain.
Tests will be updated to ensure the expected behavior.
This may require folks that are working from master to need additional
config to get their previous behavior.
On Mon, Nov 23, 2015 at 4:45 PM, larry mccay <lmc...@apache.
All -
Lars provided the Knox community with some feedback into our development
practices and JIRA usage [1].
I wanted to bring up a DISCUSS thread on how our CTR policy may or may not
relate to a couple points made in his feedback. In particular:
1. Whether a CTR based policy should require
Thank you for your feedback, Lars.
Knox does follow a CTR policy for committers in Knox which is why you see
much of what you mention.
KNOX-640 was communicated on the dev@ list [1] to solicit feedback and
opinions.
We watch the commits to the Apache git repository via the dev@ list and
easily
o this version 0.7.0 (dependency on the 0.7.0-SNAPSHOT
> parent version).
>
> Just let me know if everything is ok and when it's goind to be merged.
>
> Thanks.
> Best regards,
> Jérôme
>
>
>
>
> 2015-12-04 14:20 GMT+01:00 larry mccay <larry.mc...@gmail.com>:
>
Terrific!
I think that your points about the git web interface and stale links are
good ones - please make sure that you add them to the DISCUSS thread.
On Fri, Dec 11, 2015 at 9:30 AM, Lars Francke
wrote:
> Sorry, saw your new thread too late. Will reply there
I like this idea.
In addition to dropwizard, I think we need to rule out leveraging what is
used in hadoop common.
I don't know how generic it is but do know that there is a JMXServlet that
can be used to expose the metrics
in a REST-like way.
Leveraging hadoop common where possible is something
Knox dev's -
We need to start locking down the release for 0.7.0.
In preparation of this, Sumit created a branch a week or so ago and we
should start considering the creation of a release candidate.
I believe that I have to update the CHANGES file with an entry for a patch
that I cherry picked
>
>
> On 12/15/15, 4:29 PM, "larry mccay" <lmc...@apache.org> wrote:
>
> >I will take on the task of merging the lists and prepare a patch for that
> >immediately.
> >
> >On Tue, Dec 15, 2015 at 4:27 PM, Kevin Minder <
> kevin.min...@hor
> Hi,
>
> No problem. It can go into a version 0.8.0 if needed. The truth is that
> there is only one change outside the new pac4j module, so I think risks are
> extremly limited.
>
> Just let met know.
>
> Thanks.
> Best regards,
> Jérôme
>
>
> 2015-12-11 14
r" <kevin.min...@hortonworks.com>
> wrote:
>
> >Hi Everyone,
> >I’ve practiced through the release mechanics so I’ll volunteer for be the
> release manager for 0.7.0 assuming we all agree to move forward.
> >Kevin.
> >
> >
> >
> >
>
errr - rc1 that is...
On Thu, Dec 17, 2015 at 2:14 PM, larry mccay <lmc...@apache.org> wrote:
> Great!
>
> We can start a VOTE for releasing rc0 then?
>
>
> On Thu, Dec 17, 2015 at 2:03 PM, Kevin Minder <
> kevin.min...@hortonworks.com> wrote:
>
>>
Okay - CHANGES has been updated in both master and v0.7.0.
We should be ready for a release candidate now.
On Tue, Dec 15, 2015 at 4:29 PM, larry mccay <lmc...@apache.org> wrote:
> I will take on the task of merging the lists and prepare a patch for that
> immediately.
>
> On
> KNOX-532: Update root pom.xml maven-compiler-plugin configuration.
> KNOX-531 fix extraneous audit entries and add additional principal mapping
> test
> KNOX-529 - second attempt to get all usecases - missed wildcard plus
> explicit mappings before
> KNOX-530 fixed oozie rewrite rules to ha
Hi Ravi -
I don't see any indication that you are using Knox in what you have
attached.
I think that you need to move to the hadoop dev list.
I can tell you that I haven't encountered this particular issue or even
seen that error for other reasons before.
I'll keep an eye out on the hadoop list
sted using some online IdP like Okta,
> TestShib, OpenFeide, Ssocircle...
>
>
> 2016-01-05 17:32 GMT+01:00 larry mccay <larry.mc...@gmail.com>:
>
> > Great - thanks for that pointer!
> >
> > I will take a look at that and help drive the release related
Unfortunately, I forgot to list the [1] thread that is in the JIRA for
https://issues.apache.org/jira/browse/KNOX-641.
This is where it was proposed that we defer the pac4j work to 0.8.0.
Sorry for any confusion.
On Tue, Jan 5, 2016 at 3:13 PM, larry mccay <lmc...@apache.org> wrote:
Hi Lars -
Thanks for bumping this thread again - we do need to bring it to a close.
I certainly agree with Kevin on CTR as the current and well working policy
for this project.
@Kevin - I believe that we need to also consider the cool off period yet.
I do not believe that external contributions
t getting lost in swarm of
> JIRA email.
>
> In short, I would prefer a single straightforward policy of CTR and other
> means of raising awareness and soliciting input.
>
>
> On 1/7/16, 8:40 AM, "larry mccay" <lmc...@apache.org> wrote:
>
> >I am not lookin
SAML - unless you already have tested SAML with Knox.
I am going to try latest pac4j for OpenID now.
On Fri, Jan 8, 2016 at 1:54 PM, Jérôme Leleu (JIRA) wrote:
>
> [
>
Awesome - thanks [~jleleu]!
I did get the google openid connect to work with the latest pac4j too!
We need to determine the best way to address the id instead of username
issue before this can be used to access hadoop resources though.
I'll need to put some thought into that.
On Fri, Jan 8,
tps://host:port/gatewaypath/file.html).
>
> ________
> From: larry mccay <lmc...@apache.org>
> Sent: Wednesday, December 23, 2015 7:43 AM
> To: dev@knox.apache.org
> Subject: Re: [DISCUSS] An Administrator UI for Knox
>
> Hi Zac -
>
> I've taken a quick look at
we targeting this UI at administrators or we targeting to end
> using APIs that are routed through Knox?
>
> On Fri, Dec 18, 2015 at 3:06 PM, larry mccay <larry.mc...@gmail.com>
> wrote:
>
> > Balaji -
> >
> > 1. Not all shops use Ambari
> > 2. We can
1 - 100 of 3349 matches
Mail list logo