[ https://issues.apache.org/jira/browse/ZOOKEEPER-2433?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Andy B updated ZOOKEEPER-2433: ------------------------------ Description: The createSaslServer function in ZooKeeperSaslServer +handles only service principal names+ (eg. *service_name/machine_name@realm*), though sometimes user/service principal names +without host name+ (eg. *service_name@realm*) are used for authentication. was: The createSaslServer function in ZooKeeperSaslServer handles only service principal names (eg. *service_name/machine_name@realm*), though sometimes user/service principal names _without host name_ (eg. *service_name@realm*) are used for authentication. > ZooKeeperSaslServer: allow user principals in subject > ----------------------------------------------------- > > Key: ZOOKEEPER-2433 > URL: https://issues.apache.org/jira/browse/ZOOKEEPER-2433 > Project: ZooKeeper > Issue Type: Improvement > Components: security > Affects Versions: 3.5.1 > Reporter: Andy B > Assignee: Andy B > Labels: easyfix > Fix For: 3.5.2, 3.6.0 > > Attachments: ZOOKEEPER-2433.patch > > Original Estimate: 5h > Remaining Estimate: 5h > > The createSaslServer function in ZooKeeperSaslServer +handles only service > principal names+ (eg. *service_name/machine_name@realm*), though sometimes > user/service principal names +without host name+ (eg. *service_name@realm*) > are used for authentication. -- This message was sent by Atlassian JIRA (v6.3.4#6332)