[
https://issues.apache.org/jira/browse/KNOX-844?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15803965#comment-15803965
]
John McParland commented on KNOX-844:
-------------------------------------
Hi [~elserj] and [~lmccay] thanks for this. I was aware of KNOX-817 however I
believed it was making calls solely over HTTP, and thus applications which
required to go over an ODBC driver for Phoenix would still need support added
to Knox.
A rough diagram of how I thought it should work (ignoring Avatica for now)
!Knox_Phoenix.png!
Does this seem sensible?
Is the above possible if the Knox gateway talks to Avatica?
If so (for the latter question) I'm more than happy to build on what's already
there - i.e. KNOX-819.
> Add support for Apache Phoenix via Knox
> ---------------------------------------
>
> Key: KNOX-844
> URL: https://issues.apache.org/jira/browse/KNOX-844
> Project: Apache Knox
> Issue Type: Improvement
> Components: Server
> Affects Versions: 0.11.0
> Reporter: John McParland
> Assignee: John McParland
> Attachments: Knox_Phoenix.png
>
>
> We would like to access data stored in Hadoop (especially HBase) using
> traditional tools which rely on ODBC connections and SQL.
> Phoenix provides the SQL interface to HBase, and Hortonworks have an [ODSC
> Connector for
> Phoenix|http://hortonworks.com/hadoop-tutorial/bi-apache-phoenix-odbc/]
> However this is unsecured - in so far as accessing from outside of the
> perimeter of the Big Data Platform.
> This ticket should address that by allowing the ODBC connection to Phoenix to
> be proxied through Knox, to enforce perimeter level security.
> h4. Acceptance Criteria
> - Connections to Phoenix via Knox are only allowed with valid credentials, as
> enforced by Knox
> - Connections to Phoenix via Knox are NOT allowed if Knox finds invalid
> credentials.
> - Connection to Phoenix via Knox can are made via an ODBC connector
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
