[CDAP-12367] Add authorization for Kerberos principal Created: 18/Aug/17  Updated: 25/Aug/17  Resolved: 22/Aug/17

Status: Resolved
Project: CDAP
Component/s: Security
Affects Version/s: None
Fix Version/s: 4.3.0

Type: Improvement Priority: Major
Reporter: Poorna Chandra Assignee: Poorna Chandra
Resolution: Fixed Votes: 0
Labels: authorization

Release Notes: Support authorization on Kerberos principal for impersonation
Rank: 1|i006iv:


CDAP needs to verify a user's Kerberos principal privilege to allow authorized impersonation as the principal.

This change needs to happen in both the Sentry plugin and the Ranger plugin

Comment by Poorna Chandra [ 19/Aug/17 ]

Sentry extension PR - https://github.com/caskdata/cdap-security-extn/pull/137

Comment by Poorna Chandra [ 21/Aug/17 ]

Ranger extension PR - https://github.com/caskdata/cdap-security-extn/pull/142

Generated at Tue Feb 19 16:32:59 UTC 2019 using Jira 7.13.0#713000-sha1:fbf406879436de2f3fb1cfa09c7fa556fb79615a.