Druid authentication/authorization on router's side #73
+458
−68
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,120 @@ | ||
| /* | ||
| * Licensed to Metamarkets Group Inc. (Metamarkets) under one | ||
| * or more contributor license agreements. See the NOTICE file | ||
| * distributed with this work for additional information | ||
| * regarding copyright ownership. Metamarkets licenses this file | ||
| * to you under the Apache License, Version 2.0 (the | ||
| * "License"); you may not use this file except in compliance | ||
| * with the License. You may obtain a copy of the License at | ||
| * | ||
| * http://www.apache.org/licenses/LICENSE-2.0 | ||
| * | ||
| * Unless required by applicable law or agreed to in writing, | ||
| * software distributed under the License is distributed on an | ||
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY | ||
| * KIND, either express or implied. See the License for the | ||
| * specific language governing permissions and limitations | ||
| * under the License. | ||
| */ | ||
|
|
||
| package io.druid.security.basic; | ||
|
|
||
| import com.fasterxml.jackson.annotation.JsonCreator; | ||
| import com.fasterxml.jackson.annotation.JsonProperty; | ||
|
|
||
| public class BasicAuthClassCompositionConfig | ||
|
There was a problem hiding this comment. Please add a class-level comment describing something or pointing somewhere. |
||
| { | ||
| @JsonProperty | ||
| private final String authenticatorMetadataStorageUpdater; | ||
|
|
||
| @JsonProperty | ||
| private final String authenticatorCacheManager; | ||
|
|
||
| @JsonProperty | ||
| private final String authenticatorResourceHandler; | ||
|
|
||
| @JsonProperty | ||
| private final String authenticatorCacheNotifier; | ||
|
|
||
| @JsonProperty | ||
| private final String authorizerMetadataStorageUpdater; | ||
|
|
||
| @JsonProperty | ||
| private final String authorizerCacheManager; | ||
|
|
||
| @JsonProperty | ||
| private final String authorizerResourceHandler; | ||
|
|
||
| @JsonProperty | ||
| private final String authorizerCacheNotifier; | ||
|
|
||
| @JsonCreator | ||
| public BasicAuthClassCompositionConfig( | ||
| @JsonProperty("authenticatorMetadataStorageUpdater") String authenticatorMetadataStorageUpdater, | ||
| @JsonProperty("authenticatorCacheManager") String authenticatorCacheManager, | ||
| @JsonProperty("authenticatorResourceHandler") String authenticatorResourceHandler, | ||
| @JsonProperty("authenticatorCacheNotifier") String authenticatorCacheNotifier, | ||
| @JsonProperty("authorizerMetadataStorageUpdater") String authorizerMetadataStorageUpdater, | ||
| @JsonProperty("authorizerCacheManager") String authorizerCacheManager, | ||
| @JsonProperty("authorizerResourceHandler") String authorizerResourceHandler, | ||
| @JsonProperty("authorizerCacheNotifier") String authorizerCacheNotifier | ||
| ) | ||
| { | ||
| this.authenticatorMetadataStorageUpdater = authenticatorMetadataStorageUpdater; | ||
| this.authenticatorCacheManager = authenticatorCacheManager; | ||
| this.authenticatorResourceHandler = authenticatorResourceHandler; | ||
| this.authenticatorCacheNotifier = authenticatorCacheNotifier; | ||
| this.authorizerMetadataStorageUpdater = authorizerMetadataStorageUpdater; | ||
| this.authorizerCacheManager = authorizerCacheManager; | ||
| this.authorizerResourceHandler = authorizerResourceHandler; | ||
| this.authorizerCacheNotifier = authorizerCacheNotifier; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthenticatorMetadataStorageUpdater() | ||
| { | ||
| return authenticatorMetadataStorageUpdater; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthenticatorCacheManager() | ||
| { | ||
| return authenticatorCacheManager; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthenticatorResourceHandler() | ||
| { | ||
| return authenticatorResourceHandler; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthenticatorCacheNotifier() | ||
| { | ||
| return authenticatorCacheNotifier; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthorizerMetadataStorageUpdater() | ||
| { | ||
| return authorizerMetadataStorageUpdater; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthorizerCacheManager() | ||
| { | ||
| return authorizerCacheManager; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthorizerResourceHandler() | ||
| { | ||
| return authorizerResourceHandler; | ||
| } | ||
|
|
||
| @JsonProperty | ||
| public String getAuthorizerCacheNotifier() | ||
| { | ||
| return authorizerCacheNotifier; | ||
| } | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,29 @@ | ||
| /* | ||
| * Licensed to Metamarkets Group Inc. (Metamarkets) under one | ||
| * or more contributor license agreements. See the NOTICE file | ||
| * distributed with this work for additional information | ||
| * regarding copyright ownership. Metamarkets licenses this file | ||
| * to you under the Apache License, Version 2.0 (the | ||
| * "License"); you may not use this file except in compliance | ||
| * with the License. You may obtain a copy of the License at | ||
| * | ||
| * http://www.apache.org/licenses/LICENSE-2.0 | ||
| * | ||
| * Unless required by applicable law or agreed to in writing, | ||
| * software distributed under the License is distributed on an | ||
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY | ||
| * KIND, either express or implied. See the License for the | ||
| * specific language governing permissions and limitations | ||
| * under the License. | ||
| */ | ||
|
|
||
| package io.druid.security.basic.authentication.db.cache; | ||
|
|
||
| public class NoopBasicAuthenticatorCacheNotifier implements BasicAuthenticatorCacheNotifier | ||
|
There was a problem hiding this comment. Why this class is needed? It's not used in this PR. There was a problem hiding this comment. It is needed on a config level There was a problem hiding this comment. Would be nice to specify whether "noop" means "no auth" or "always rejecting auth". |
||
| { | ||
| @Override | ||
| public void addUpdate(String updatedAuthenticatorPrefix, byte[] updatedUserMap) | ||
| { | ||
| // Do nothing as this is a noop implementation | ||
| } | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,29 @@ | ||
| /* | ||
| * Licensed to Metamarkets Group Inc. (Metamarkets) under one | ||
| * or more contributor license agreements. See the NOTICE file | ||
| * distributed with this work for additional information | ||
| * regarding copyright ownership. Metamarkets licenses this file | ||
| * to you under the Apache License, Version 2.0 (the | ||
| * "License"); you may not use this file except in compliance | ||
| * with the License. You may obtain a copy of the License at | ||
| * | ||
| * http://www.apache.org/licenses/LICENSE-2.0 | ||
| * | ||
| * Unless required by applicable law or agreed to in writing, | ||
| * software distributed under the License is distributed on an | ||
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY | ||
| * KIND, either express or implied. See the License for the | ||
| * specific language governing permissions and limitations | ||
| * under the License. | ||
| */ | ||
|
|
||
| package io.druid.security.basic.authorization.db.cache; | ||
|
|
||
| public class NoopBasicAuthorizerCacheNotifier implements BasicAuthorizerCacheNotifier | ||
|
There was a problem hiding this comment. I also removed the same classes from test scope so this class is used in tests now |
||
| { | ||
| @Override | ||
| public void addUpdate(String authorizerPrefix, byte[] userAndRoleMap) | ||
| { | ||
| // Do nothing as this is a noop implementation | ||
| } | ||
| } | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This class has a lot of fields, but seems that only one of them is used, why is that?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Actually, all of them are in use (see BasicSecurityDruidModule)