lasdf1234 opened a new pull request, #10973: URL: https://github.com/apache/gravitino/pull/10973
### What changes were proposed in this pull request? This PR implements the Basic authentication flow for local authentication. It verifies Basic credentials against the local IdP user metadata, checks the stored password hash, and keeps malformed header handling covered by tests. ### Why are the changes needed? The local authentication epic needs the Basic authenticator to validate username/password credentials end-to-end instead of only parsing the Authorization header. Fix: #10964 ### Does this PR introduce _any_ user-facing change? Users can now authenticate with Basic authentication when local authentication is enabled and the provided username/password matches the stored local IdP user metadata. ### How was this patch tested? ``` export JAVA_HOME=/Library/Java/JavaVirtualMachines/microsoft-17.jdk/Contents/Home export PATH="$JAVA_HOME/bin:$PATH" ./gradlew :server-common:test --tests org.apache.gravitino.server.authentication.TestBasicAuthenticator --tests org.apache.gravitino.server.authentication.TestAuthenticationFilter -PskipITs -PskipDockerTests=true ``` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
