From cassandra-commits-return-6939-apmail-incubator-cassandra-commits-archive=incubator.apache.org@incubator.apache.org Tue Dec 01 13:47:44 2009 Return-Path: Delivered-To: apmail-incubator-cassandra-commits-archive@minotaur.apache.org Received: (qmail 33065 invoked from network); 1 Dec 2009 13:47:43 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 1 Dec 2009 13:47:43 -0000 Received: (qmail 83201 invoked by uid 500); 1 Dec 2009 13:47:43 -0000 Delivered-To: apmail-incubator-cassandra-commits-archive@incubator.apache.org Received: (qmail 83184 invoked by uid 500); 1 Dec 2009 13:47:43 -0000 Mailing-List: contact cassandra-commits-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: cassandra-dev@incubator.apache.org Delivered-To: mailing list cassandra-commits@incubator.apache.org Received: (qmail 83174 invoked by uid 99); 1 Dec 2009 13:47:43 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 01 Dec 2009 13:47:43 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 01 Dec 2009 13:47:41 +0000 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 9BEE9234C045 for ; Tue, 1 Dec 2009 05:47:20 -0800 (PST) Message-ID: <1875233683.1259675240633.JavaMail.jira@brutus> Date: Tue, 1 Dec 2009 13:47:20 +0000 (UTC) From: "Ted Zlatanov (JIRA)" To: cassandra-commits@incubator.apache.org Subject: [jira] Commented: (CASSANDRA-547) authentication and authorization functions (stage 1) In-Reply-To: <905106190.1258049319798.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/CASSANDRA-547?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12784230#action_12784230 ] Ted Zlatanov commented on CASSANDRA-547: ---------------------------------------- Consider this simply a very early prototype. The API is simple. Three functions are available: void login(Map credentials) throws AuthenticationException void setKeyspace(String keyspace) throws AuthorizationException String getKeyspace() There is an AllowAllAuthenticator backend that implements the default (approve all) policy. For backwards compatibility, the current API will still work. Whenever a function that takes a keyspace argument is called, it will call setKeyspace() on the auth backend, ignoring any exceptions (to keep the current API the same as far as exceptions). In a later API revision, this will be changed in favor of just setting the keyspace separately. > authentication and authorization functions (stage 1) > ---------------------------------------------------- > > Key: CASSANDRA-547 > URL: https://issues.apache.org/jira/browse/CASSANDRA-547 > Project: Cassandra > Issue Type: New Feature > Components: Core > Affects Versions: 0.5 > Reporter: Ted Zlatanov > Assignee: Ted Zlatanov > Attachments: auth.patch > > > Add functions to login() and setKeyspace(). Check against authentication+authorization backends whether those calls should succeed or fail. > Create file-based and LDAP backends to implement authentication and authorization. > Create AllowAll backend to allow all access. > Add configuration stanza to specify the auth backend. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.