[jira] [Commented] (CASSANDRA-19859) gocql: Don't restrict server authenticator unless PasswordAuthentictor.AllowedAuthenticators is provided

Fri, 23 Aug 2024 09:05:52 -0700 


    [ 
https://issues.apache.org/jira/browse/CASSANDRA-19859?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17876312#comment-17876312
 ] 

Dinesh Joshi commented on CASSANDRA-19859:
------------------------------------------

This default behavior makes most sense to me. I am +1 on this idea. However, 
since this is a behavior change I would take this to the dev list as a DISCUSS 
thread.

> gocql: Don't restrict server authenticator unless 
> PasswordAuthentictor.AllowedAuthenticators is provided
> --------------------------------------------------------------------------------------------------------
>
>                 Key: CASSANDRA-19859
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-19859
>             Project: Cassandra
>          Issue Type: Improvement
>          Components: Client/gocql-driver
>            Reporter: Andy Tolbert
>            Priority: Normal
>
> Currently gocql will only allow authenticating with authenticators defined in 
> {{defaultApprovedAuthenticators}} in {{conn.go}}.
> There have been multiple occurrences of implementers needing to update this 
> list, either when a vendor would like to add their authenticator, or a new 
> authenticator being added, e.g.: [CASSANDRA-19858]
> examples:
> https://github.com/apache/cassandra-gocql-driver/pull/883
> https://github.com/apache/cassandra-gocql-driver/pull/1254
> https://github.com/apache/cassandra-gocql-driver/pull/1321
> https://github.com/apache/cassandra-gocql-driver/pull/1379
> I think it would probably reduce friction to just accept any authenticator 
> provided by the server.  From what I know, other drivers behave in this way.
> If a user wanted to restrict this, they could use the existing configuration 
> {{PasswordAuthenticator.AllowedAuthenticators}}, e.g.:
> {code}
> cluster.Authenticator = PasswordAuthenticator{
>     Username: x,
>     Password: x,
>     AllowedAuthenticators: []string { 
>         "myrandomauth",
>     }
> }
> {code}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org
For additional commands, e-mail: commits-h...@cassandra.apache.org

Reply via email to