[
https://issues.apache.org/jira/browse/HADOOP-10221?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13902456#comment-13902456
]
Benoy Antony commented on HADOOP-10221:
---------------------------------------
Thanks [~daryn] for the review.
{code:title=SaslPropertiesResolver.java|borderStyle=solid}
Map<String, String> resolve (Map<String, String> properties,
ConnectionContext ctxt);
{code}
1. To make sure that input is not modified, I can pass an unmodifiable
properties.
2. ConnectionContext with ugi and ipasddress was introduced because of an
internal review. I was using only the ip address to make the decison. I can
remove the UGI field from ConnectionContext.
> Add a plugin to specify SaslProperties for RPC protocol based on connection
> properties
> --------------------------------------------------------------------------------------
>
> Key: HADOOP-10221
> URL: https://issues.apache.org/jira/browse/HADOOP-10221
> Project: Hadoop Common
> Issue Type: Improvement
> Components: security
> Affects Versions: 2.2.0
> Reporter: Benoy Antony
> Assignee: Benoy Antony
> Attachments: HADOOP-10221.patch, HADOOP-10221.patch
>
>
> Add a plugin to specify SaslProperties for RPC protocol based on connection
> properties.
> HADOOP-10211 enables client and server to specify and support multiple QOP.
> Some connections needs to be restricted to a specific set of QOP based on
> connection properties.
> Eg. connections from client from a specific subnet needs to be encrypted
> (QOP=privacy)
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
