[jira] [Commented] (CASSANDRA-19946) Allow configuration parameters for IAuthorizer, INetworkAuthorizer, and IRoleManager

[Sudipta Laha (Jira)]

    [ 
https://issues.apache.org/jira/browse/CASSANDRA-19946?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18015292#comment-18015292
 ] 

Sudipta Laha commented on CASSANDRA-19946:
------------------------------------------

This issue is present in the latest released version of Cassandra 5.

> Allow configuration parameters for IAuthorizer, INetworkAuthorizer, and 
> IRoleManager
> ------------------------------------------------------------------------------------
>
>                 Key: CASSANDRA-19946
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-19946
>             Project: Apache Cassandra
>          Issue Type: Improvement
>          Components: Feature/Authorization
>            Reporter: Tiago L. Alves
>            Assignee: Tiago L. Alves
>            Priority: Normal
>             Fix For: 5.0.2, 5.1
>
>         Attachments: CASSANDRA-19946_trunk_49_ci_summary.html, 
> CASSANDRA-19946_trunk_49_results_details.tar.xz, ci_summary.html, 
> results_details.tar.xz
>
>          Time Spent: 6.5h
>  Remaining Estimate: 0h
>
> The implementation of custom authentication / authorization can be achieved 
> by implementing {{{}IAuthenticator{}}}, {{{}IAuthorizer{}}}, 
> {{{}IRoleManager{}}}, and other interfaces and configured in 
> {{{}cassandra.yaml{}}}.
> {{IAuthenticator}} implementations, for instance, can additionally read extra 
> configuration parameters via a map of strings defined in 
> {{{}cassandra.yaml{}}}.
> Examples of valid configurations are:
> {code:java}
> authenticator: com.example.auth.CustomAuthenticator{code}
> or
> {code:java}
> authenticator:
>   class_name : com.example.auth.CustomAuthenticator
>   parameters :
>     param1 : value1
>     param2 : value2{code}
> This enables a C* admin to conveniently define and parameterize it's own 
> custom Authenticator directly in {{{}cassandra.yaml{}}}.
> This parameterization is currently enabled for {{Authenticator}} and 
> {{CIDRAuthorizer}} implementations only and is missing for 
> {{{}Authorizer{}}}, {{{}RoleManager{}}}, and {{NetworkAuthorizer.}}
> To enable a C* admin to set and parameterize custom 
> authentication/authorization implementations we should enable parametrization 
> of all {{{}Authorizer{}}}, {{{}RoleManager{}}}, and {{NetworkAuthorizer}} 
> implementations. This can be achieved by instantiating all auth-related 
> implementations via {{{}ParameterizedClass{}}}.
> From an user point of view, configuring existent authenticators/authorizators 
> will have no visible changes.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org
For additional commands, e-mail: commits-h...@cassandra.apache.org