Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-25957

Fix password based authentication with SAML enabled

    XMLWordPrintableJSON

Details

    Description

      In HIVE-25875, we allowed SAML to be set with other password based authentication, but we pass NONE to the function doPasswordAuth. That is, any requests use basic authentication header can bypass the password verification because NONE means a no-op authentication.

      Attachments

        Issue Links

          is caused by

          Improvement - An improvement or enhancement to an existing feature or task. HIVE-25875 Support multiple authentication mechanisms simultaneously

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #3028

          Activity

            People

              hsnusonic Yu-Wen Lai
              hsnusonic Yu-Wen Lai
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1.5h
                  1.5h