Class KerberosAuthorizor
- java.lang.Object
-
- org.apache.accumulo.server.security.handler.KerberosAuthorizor
-
- All Implemented Interfaces:
Authorizor
public class KerberosAuthorizor extends Object implements Authorizor
Kerberos principals might contains identifiers that are not valid ZNodes ('/'). Base64-encodes the principals before interacting with ZooKeeper.
-
-
Constructor Summary
Constructors Constructor Description KerberosAuthorizor()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description void
changeAuthorizations(String user, Authorizations authorizations)
Used to change the authorizations for the uservoid
dropUser(String user)
Deletes a userAuthorizations
getCachedUserAuthorizations(String user)
Used to get the authorizations for the uservoid
initialize(ServerContext context)
Sets up the authorizor for a new instance of Accumulovoid
initializeSecurity(TCredentials credentials, String rootuser)
Used to initialize security for the root uservoid
initUser(String user)
Initializes a new userboolean
isValidAuthorizations(String user, List<ByteBuffer> list)
Used to check if a user has valid auths.boolean
validSecurityHandlers(Authenticator auth, PermissionHandler pm)
Used to validate that the Authorizor, Authenticator, and permission handler can coexist
-
-
-
Method Detail
-
initialize
public void initialize(ServerContext context)
Description copied from interface:Authorizor
Sets up the authorizor for a new instance of Accumulo- Specified by:
initialize
in interfaceAuthorizor
-
validSecurityHandlers
public boolean validSecurityHandlers(Authenticator auth, PermissionHandler pm)
Description copied from interface:Authorizor
Used to validate that the Authorizor, Authenticator, and permission handler can coexist- Specified by:
validSecurityHandlers
in interfaceAuthorizor
-
initializeSecurity
public void initializeSecurity(TCredentials credentials, String rootuser) throws AccumuloSecurityException
Description copied from interface:Authorizor
Used to initialize security for the root user- Specified by:
initializeSecurity
in interfaceAuthorizor
- Throws:
AccumuloSecurityException
-
changeAuthorizations
public void changeAuthorizations(String user, Authorizations authorizations) throws AccumuloSecurityException
Description copied from interface:Authorizor
Used to change the authorizations for the user- Specified by:
changeAuthorizations
in interfaceAuthorizor
- Throws:
AccumuloSecurityException
-
getCachedUserAuthorizations
public Authorizations getCachedUserAuthorizations(String user)
Description copied from interface:Authorizor
Used to get the authorizations for the user- Specified by:
getCachedUserAuthorizations
in interfaceAuthorizor
-
isValidAuthorizations
public boolean isValidAuthorizations(String user, List<ByteBuffer> list)
Description copied from interface:Authorizor
Used to check if a user has valid auths.- Specified by:
isValidAuthorizations
in interfaceAuthorizor
-
initUser
public void initUser(String user) throws AccumuloSecurityException
Description copied from interface:Authorizor
Initializes a new user- Specified by:
initUser
in interfaceAuthorizor
- Throws:
AccumuloSecurityException
-
dropUser
public void dropUser(String user) throws AccumuloSecurityException
Description copied from interface:Authorizor
Deletes a user- Specified by:
dropUser
in interfaceAuthorizor
- Throws:
AccumuloSecurityException
-
-