[jira] [Commented] (GEODE-8782) Add getPrincipal method to FunctionContext interface

Fri, 15 Jan 2021 10:11:04 -0800 


    [ 
https://issues.apache.org/jira/browse/GEODE-8782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17266266#comment-17266266
 ] 

ASF subversion and git services commented on GEODE-8782:
--------------------------------------------------------

Commit b2d205459bfe6f045246233fbd3f08fad3e8503b in geode's branch 
refs/heads/support/1.13 from Jens Deppe
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=b2d2054 ]

GEODE-8782: Add getPrincipal method to FunctionContext interface (#5897)

- Add the ability to retrieve the Principal from the FunctionContext
  when a SecurityManager is enabled.
- For rolling upgrade purposes this also includes a new ordinal
  version for GEODE_1_12_1.

- Various test fixes to account for new version

(cherry picked from commit a42f89ab48aaca9aac96a34e80a9b3b2d46bcddd)
(cherry picked from commit 0ab677199d189527be354fd1427ce29b91ed6b31)

* add 1.13.0 to old versions and set as Benchmarks baseline on develop
* leave HTTP service off in WAN and Lucene rolling upgrade tests to avoid port 
conflict

Co-authored-by: Bill Burcham <[email protected]>
(cherry picked from commit 9d139b54a2d5229e5415bbed6e01ee95dc5151ec)

* also add 1.13.1 that was missing from old-versions
* clean up overzealous cherry-pick

Co-authored-by: Dave Barnes <[email protected]>
Co-authored-by: Owen Nichols <[email protected]>

> Add getPrincipal method to FunctionContext interface
> ----------------------------------------------------
>
>                 Key: GEODE-8782
>                 URL: https://issues.apache.org/jira/browse/GEODE-8782
>             Project: Geode
>          Issue Type: New Feature
>          Components: core
>            Reporter: Jens Deppe
>            Priority: Major
>              Labels: pull-request-available
>             Fix For: 1.12.1, 1.14.0
>
>
> In some cases it would be very helpful to have access to the {{Principal}} 
> when executing a function.
> It may seem obvious that if one has a reference to the {{cache}} that you 
> could get to the {{SecurityManager}} and extract the {{Subject}} and thus the 
> {{Principal}} from there. However, in some cases, Geode will seamlessly proxy 
> a function call from one server to the other. This will typically happen with 
> {{onRegion}} calls and partitioned regions. In such cases, the security 
> context is lost and thus the principal is not accessible.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to