Thanks Naveen,
I missed that HIVE-25875 recently provided explicit multi-AuthN support.
The use case is simple: secured cluster
with hive.server2.transport.mode=all for both secured native clients
(kerberos) and external clients (user/pass)
- KERBEROS is needed for cluster-local (or near-cluster)
Hi Janos,
LDAP auth works in http mode as well.
We have made some enhancements recently:
HIveServer2 is now capable of supporting multiple authentication mode. For
example: in http mode, you can set it to "LDAP,SAML"
We have just added another auth mode (JWT) for http transport via
HIVE-25575. So
Hey Janos,
You brought up an interesting subject.
I haven't worked on the code around the authentication process so cannot
foresee the impact on the codebase but high level your idea seems
reasonable to me.
I would be favorable in such a change but I would definitely like to see
some tests and d
Hi,
I just found that while HS2 can do authentication with mixed methods - like
Kerberos+LDAP - it only works with the binary protocol. With the transport
set to http, the authentication basically works only against what is set by
hive.server2.authentication. If e.g. it's set to LDAP, it doesn't t
