Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve handing of insecure authentication over HTTP and HTTPS #4199

Merged
merged 12 commits into from Jun 25, 2020
Merged

Improve handing of insecure authentication over HTTP and HTTPS #4199

merged 12 commits into from Jun 25, 2020

Conversation

dain
Copy link
Member

@dain dain commented Jun 24, 2020

Unless configured for authentication, Presto allow user to connect with any username. In this PR, I make this mode explicit by introducing an "insecure" authenticator. This authenticator retains the existing behavior, any username is allowed, but no password can be sent. The default authenticator type is set to insecure so it is clear in the startup message that authentication is not secured.

In addition, the when secure authentication is configured, insecure authentication over HTTP is disabled by default. This can be reenabled with a configuration setting.

@dain dain requested a review from electrum June 24, 2020 18:29
@cla-bot cla-bot bot added the cla-signed label Jun 24, 2020
@electrum
Copy link
Member

Typo in commit message (missing n)

Convert AuthenticatioFilter to a JaxRs filter

dain added 12 commits June 24, 2020 18:23
@dain dain merged commit 9638664 into trinodb:master Jun 25, 2020
@dain dain deleted the insecure-authentication branch June 25, 2020 01:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@electrum electrum Awaiting requested review from electrum

Assignees
No one assigned
Labels
cla-signed
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@dain @electrum