[ 
https://issues.apache.org/jira/browse/HIVE-24543?focusedWorklogId=525318&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-525318
 ]

ASF GitHub Bot logged work on HIVE-24543:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 16/Dec/20 22:53
            Start Date: 16/Dec/20 22:53
    Worklog Time Spent: 10m 
      Work Description: vihangk1 opened a new pull request #1791:
URL: https://github.com/apache/hive/pull/1791


   ## What changes were proposed in this pull request?
   This is a WIP patch to add support for SAML 2.0 based authention for 
HiveServer2 clients. Currently this would only support local desktop based JDBC 
clients. The JDBC Driver opens a browser and points to the SSO URL to complete 
the authentication flow.
   
   
   ### Why are the changes needed?
   New feature
   
   ### Does this PR introduce _any_ user-facing change?
   It introduces new hive configurations to configure the SAML client.
   
   ### How was this patch tested?
   Added new unit tests to authenticate against a dockerized SAML 2.0 provider. 
Also, manually tested with Okta SAML 2.0 application.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
[email protected]


Issue Time Tracking
-------------------

            Worklog Id:     (was: 525318)
    Remaining Estimate: 0h
            Time Spent: 10m

> Support SAML 2.0 as an authentication mechanism
> -----------------------------------------------
>
>                 Key: HIVE-24543
>                 URL: https://issues.apache.org/jira/browse/HIVE-24543
>             Project: Hive
>          Issue Type: New Feature
>            Reporter: Vihang Karajgaonkar
>            Assignee: Vihang Karajgaonkar
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> With cloud based deployments, having a SAML 2.0 based authentication support 
> in HS2 will be greatly useful in case of federated or external identity 
> providers like Okta, PingIdentity or Azure AD.
> This authentication mechanism can initially be only supported on http 
> transport mode in HiveServer2 since the SAML 2.0 protocol is primarily 
> designed for web clients.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to