[
https://issues.apache.org/jira/browse/KNOX-236?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16589327#comment-16589327
]
Sean Roberts commented on KNOX-236:
-----------------------------------
Anyone looked into this? Auth Negotiation is a common requirement and is native
in many other Hadoop services (Ambari, Ranger, Hadoop UIs, ...).
> Allow multiple federation/authentication providers in a chain
> -------------------------------------------------------------
>
> Key: KNOX-236
> URL: https://issues.apache.org/jira/browse/KNOX-236
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Reporter: Larry McCay
> Priority: Major
> Labels: security
> Fix For: Future
>
>
> In order to allow composing the authentication of a request and the
> federation of a preauthenticated identity, we need to allow multiple
> federation providers/filters or authentication and federation filters.
> This will allow for a specific provider - like the JWT provider - to
> authenticate the client of an incoming request and to federate the identity
> of the enduser based on a federation token/header/assertion, etc.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
