Thomas Tauber-Marshall created IMPALA-10162:
-----------------------------------------------
Summary: Support additional LDAP filter options
Key: IMPALA-10162
URL: https://issues.apache.org/jira/browse/IMPALA-10162
Project: IMPALA
Issue Type: Task
Components: Security
Affects Versions: Impala 4.0
Reporter: Thomas Tauber-Marshall
Assignee: Thomas Tauber-Marshall
IMPALA-2563 added support for user and group filter on LDAP, with options
modeled after those in Hive, but they are somewhat restrictive - only allowing
specifying particular parts of the LDAP search filter used.
There are additional, more general ldap filter options that Impala should also
support which allow for specifying arbitrary search filters. This for example
would enable an LDAP configuration where the authenticated usernames are not
part of the user's DN.
We should model these configs after equivalent options in HDFS, see in
particular 'hadoop.security.group.mapping.ldap.search.filter.user' and
'hadoop.security.group.mapping.ldap.search.filter.group'
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-all-unsubscr...@impala.apache.org
For additional commands, e-mail: issues-all-h...@impala.apache.org
