[jira] [Commented] (ZOOKEEPER-1045) Quorum Peer mutual authentication

Wed, 25 May 2016 08:23:12 -0700 

    [ 
https://issues.apache.org/jira/browse/ZOOKEEPER-1045?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15300204#comment-15300204
 ] 

Rakesh R commented on ZOOKEEPER-1045:
-------------------------------------

Thank you [~yufeldman] for the comments. 

I have created {{SecurityUtils}} to avoid code duplication. Like you know, the 
idea of my jira is to provide authentication among Zookeeper servers using 
SASL(Kerberos/Digest) mechanism. IIUC the idea of ZOOKEEPER-2159 is to "extend 
the existing client-server authentication infrastructure by supporting more 
auths". I couldn't see any dependency between these jiras apart from touching 
common code base. I feel both the jira tasks can go parallely, because both are 
proposing two different ideas. Any of the jira can be committed first based on 
the community votes +1s. That way we get chance to accelerate multiple 
imprv/feature developments and add more imprvs/features to ZooKeeper project 
simulataneously. The jira which is going second needs to refactor their code on 
top of the first because both are touching common code {{SaslServer}} and 
{{SaslClient}} classes. It doesn't mean that they both are dependent, right?

[~yufeldman], appreciate your effort. I will try to find some time in the 
coming week and help in pushing your idea in.

> Quorum Peer mutual authentication
> ---------------------------------
>
>                 Key: ZOOKEEPER-1045
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1045
>             Project: ZooKeeper
>          Issue Type: New Feature
>          Components: server
>            Reporter: Eugene Koontz
>            Assignee: Rakesh R
>            Priority: Critical
>         Attachments: 0001-ZOOKEEPER-1045-br-3-4.patch, 
> ZK-1045-test-case-failure-logs.zip, ZOOKEEPER-1045-00.patch, 
> ZOOKEEPER-1045-Rolling Upgrade Design Proposal.pdf, 
> ZOOKEEPER-1045-br-3-4.patch
>
>
> ZOOKEEPER-938 addresses mutual authentication between clients and servers. 
> This bug, on the other hand, is for authentication among quorum peers. 
> Hopefully much of the work done on SASL integration with Zookeeper for 
> ZOOKEEPER-938 can be used as a foundation for this enhancement.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to