[HBASE-28501] Support non-SPNEGO authentication methods and implement session handling in REST java client library - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.4.18, 2.7.0, 3.0.0-beta-2, 2.6.1, 2.5.9
Component/s: REST
Labels:
- pull-request-available

Description

The current java client only supports the SPENGO authentication method.

This does not support the case when an application proxy like Apache Knox performs AAA conversion from BASIC/DIGEST to kerberos authentication.

Add support for BASIC username/password auth the client.

Generally, the authentication code in the client looks quite backwards, it seems that most of the kerberos / auth cookie code duplicates HttpClient functionality. AFAICT setting HttpClient up (or letting user set it up) , and letting it handle authentication by itself would be a better and more generic solution.

~~Also add support for specifying a prefix for the URL path.~~

Attachments

Issue Links

causes

HBASE-28649 Wrong properties are used to set up SSL for REST Client Kerberos authenticator

Resolved

fixes

HBASE-28553 SSLContext not used for Kerberos auth negotiation in rest client

Resolved

is depended upon by

HBASE-28550 Provide working benchmark tool for REST server

Open

links to

GitHub Pull Request #5881

GitHub Pull Request #5928

Activity

People

Assignee:: Istvan Toth

Reporter:: Istvan Toth

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 08/Apr/24 08:39

Updated:: 10/Jun/24 16:11

Resolved:: 21/May/24 07:50