[KNOX-697] Identity asserter provider that supports case mapping for users and groups - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 0.9.0
Fix Version/s: 0.9.0
Component/s: Server
Labels:
None

Description

There have been numerous occasions where downstream ecosystem components have required user and group names to be specific case. Currently Knox does not enforce the case of the user or group identity and will use whatever is accepted by the authentication provider. The request here is to add a new identity-assertion provider that could be configured to do case mapping on user and group names. It might be configured in a topology file something like what is shown below.

    <provider>
        <role>identity-assertion</role>
        <name>SwitchCase</name>
        <param name="user" value="upper"/>
        <param name="group" value="upper"/>
        <enabled>true</enabled>
    </provider>

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

KNOX-697_001.patch
23/Mar/16 22:32
25 kB
Kevin Minder

Activity

People

Assignee:: Kevin Minder

Reporter:: Kevin Minder

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 23/Mar/16 20:41

Updated:: 28/Mar/19 14:15

Resolved:: 24/Mar/16 15:10