[
https://issues.apache.org/jira/browse/HBASE-8662?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13688563#comment-13688563
]
Francis Liu commented on HBASE-8662:
------------------------------------
In order to support pluggability, you need to pick a PREFIX and pass all the
configs which start with the prefix to the filter as you wouldn't know what
specific properties needs to be passed. Currently you're cherry picking and
remmapping things which is limits pluggability. You can just reuse the
AuthFilter class in my patch and rename the prefix if you'd like as you'll
probably end up writing similar logic.
BTW what do you think about adding proxy users per method? I think that's a
better way to go about things than creating contexts per user. I'm attaching a
trunk patch you can try out.
> [rest] support impersonation
> ----------------------------
>
> Key: HBASE-8662
> URL: https://issues.apache.org/jira/browse/HBASE-8662
> Project: HBase
> Issue Type: Sub-task
> Components: REST, security
> Reporter: Jimmy Xiang
> Assignee: Jimmy Xiang
> Fix For: 0.98.0
>
> Attachments: method_doas.patch, secure_rest.patch, trunk-8662.patch,
> trunk-8662_v2.patch, trunk-8662_v3.patch
>
>
> Currently, our client API uses a fixed user: the current user. It should
> accept a user passed in, if authenticated.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
