scylladb

mirrors/scylladb

Fork 0

mirror of https://github.com/scylladb/scylladb.git synced 2026-05-01 21:55:50 +00:00

Commit Graph

Author	SHA1	Message	Date
Marcin Maliszkiewicz	b29c42adce	main: auth: add auth cache dependency to auth service In the following commit we'll switch some authorizer and role manager code to use the cache so we're preparing the dependency.	2025-11-26 12:01:31 +01:00
Michael Litvak	3c3dd4cf9d	auth: add query_state parameter to query functions add a query_state parameter to several auth functions that execute internal queries. currently the queries use the internal_distributed_query_state() query state, and we maintain this as default, but we want also to be able to pass a query state from the caller. in particular, the auth queries currently use a timeout of 5 seconds, and we will want to set a different timeout when executed in some different context.	2025-09-25 16:46:50 +02:00
Piotr Smaron	288f9b2b15	Introduce LDAP role manager & saslauthd authenticator This PR extends authentication with 2 mechanisms: - a new role_manager subclass, which allows managing users via LDAP server, - a new authenticator, which delegates plaintext authentication to a running saslauthd daemon. The features have been ported from the enterprise repository with their test.py tests and the documentation as part of changing license to source available. Fixes: scylladb/scylla-enterprise#5000 Fixes: scylladb/scylla-enterprise#5001 Closes scylladb/scylladb#22030	2025-01-12 14:50:29 +02:00

Author

SHA1

Message

Date

Marcin Maliszkiewicz

b29c42adce

main: auth: add auth cache dependency to auth service

In the following commit we'll switch some authorizer
and role manager code to use the cache so we're preparing
the dependency.

2025-11-26 12:01:31 +01:00

Michael Litvak

3c3dd4cf9d

auth: add query_state parameter to query functions

add a query_state parameter to several auth functions that execute
internal queries. currently the queries use the
internal_distributed_query_state() query state, and we maintain this as
default, but we want also to be able to pass a query state from the
caller.

in particular, the auth queries currently use a timeout of 5 seconds,
and we will want to set a different timeout when executed in some
different context.

2025-09-25 16:46:50 +02:00

Piotr Smaron

288f9b2b15

Introduce LDAP role manager & saslauthd authenticator

This PR extends authentication with 2 mechanisms:
- a new role_manager subclass, which allows managing users via
LDAP server,
- a new authenticator, which delegates plaintext authentication
to a running saslauthd daemon.

The features have been ported from the enterprise repository
with their test.py tests and the documentation as part of
changing license to source available.

Fixes: scylladb/scylla-enterprise#5000
Fixes: scylladb/scylla-enterprise#5001

Closes scylladb/scylladb#22030

2025-01-12 14:50:29 +02:00

3 Commits