[
https://issues.apache.org/jira/browse/KNOX-849?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15990080#comment-15990080
]
Larry McCay commented on KNOX-849:
----------------------------------
I've refactored the use of the SimplePrincipalMapper from out of the
DefaultIdentityAsserter filter into the CommonIdentityAssertionFilter. This
allows the based principal mapping to be used with all extensions of the CIAF
base and the use of the principal mapping elements.
I've tested it with existing CIAF derivatives and it works well.
The principal mapping will be executed before the extension specific logic as
to incorporate that mapping in any additional rules.
> Fix SimplePrincipalMapper and CommonIdentityAssertionFilter
> -----------------------------------------------------------
>
> Key: KNOX-849
> URL: https://issues.apache.org/jira/browse/KNOX-849
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Reporter: Larry McCay
> Assignee: Larry McCay
> Fix For: 0.13.0
>
>
> AbstractIdentityAssertionFilter provides the use of SimplePrincipalMapper so
> that others can provide the same principal mapping capabilities as
> Default/Simple. However, CommonIdentityAssertionFilter which is derived from
> it hides its availability and therefore it isn't used by any of the other
> providers.
> Need to fix this and make sure that the same principal mapping capabilities
> and configuration is available across all identity assertion providers.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
