Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-7646

Allow passing secure configuration to auth server plugins

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Duplicate
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Security
    • Labels:
    • Rank:
      1|hzzoon:

      Description

      In CDAP-7287 we added a way to allow TLS authentication of CDAP clients. The custom handler doing TLS authentication needs access to keystore (and its password) to verify the client certificates.

      Today AbstractAuthenticationHandler does not have a way to pass secure configuration to custom authentication handlers. Hence keystore and its password will have to be specified in a world-readable cdap-site.xml file. It would be good to have a way to pass the secure configuration from cdap-security.xml to authentication handlers.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                poorna Poorna Chandra
                Reporter:
                poorna Poorna Chandra
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: