[
https://issues.apache.org/jira/browse/KAFKA-14293?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Patrik Márton reassigned KAFKA-14293:
-------------------------------------
Assignee: Patrik Márton
> Basic Auth filter should set the SecurityContext after a successful login
> -------------------------------------------------------------------------
>
> Key: KAFKA-14293
> URL: https://issues.apache.org/jira/browse/KAFKA-14293
> Project: Kafka
> Issue Type: Improvement
> Reporter: Patrik Márton
> Assignee: Patrik Márton
> Priority: Major
>
> Currently, the JaasBasicAuthFilter does not set the security context of the
> request after a successful login. However, this information of an
> authenticated user might be required for further processing, for example to
> perform authorization checks after the authentication.
> > The filter should be extended to add the Security Context after a
> > successful login.
> Another improvement would be to assign the right Priority to the filter. The
> current implementation uses the default priority, which is Priorities.USER =
> 5000. This is a lower priority than for example AUTHORIZATION, which means
> that the basic auth filter would run after authorization filters.
> > Assing the correct Priorities.AUTHENTICATION = 1000 priority to the filter
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
