Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-13142

Impersonation as logged in user

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Security
    • Labels:
    • Rank:
      1|i00b13:

      Description

      Current Impersonation works by configuring a service account at a namespace level or an application level to run the programs. The service account principal and keytabs are specified as of release 4.3 to achieve the same.

      To support new use-cases which has requirements to run the programs (pipelines) as logged in user the impersonation backend and the UI needs to be enhanced. one of two approaches can be taken

      • Specify the principal and keytab at the time of running the program
      • Performing proxy user impersonation.

        Attachments

          Activity

            People

            • Assignee:
              bhooshan Bhooshan Mogal
              Reporter:
              sree Sreevatsan Raman
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: