Gitiles
Code Review Sign In
asterix-gerrit.ics.uci.edu / asterixdb / refs/heads/morpheus^! / .
commit184a963c553b8edd2e22e97b5d034108727a7ff3[log] [tgz]
authorMichael Blow <michael.blow@couchbase.com>Wed Jan 15 14:52:11 2025 -0500
committerMichael Blow <mblow@apache.org>Sat Jan 25 13:07:47 2025 +0000
treeb1cb8028534f733fb1497164e0fb261ab6bc7430
parentb68a7cc1310c19aef1e489c307bd2bebace04ce4 [diff]
[NO ISSUE][HYR][NET] += INetworkSecurityConfig.useMutualAuth

Ext-ref: MB-XXXXXX
Change-Id: Ia79ceb64e251362772f5d8d3a8cf35f3197b37fa
Reviewed-on: https://asterix-gerrit.ics.uci.edu/c/asterixdb/+/19315
Reviewed-by: Michael Blow <mblow@apache.org>
Reviewed-by: Ian Maxon <imaxon@apache.org>
Tested-by: Michael Blow <mblow@apache.org>

diff --git a/hyracks-fullstack/hyracks/hyracks-api/src/main/java/org/apache/hyracks/api/network/INetworkSecurityConfig.java b/hyracks-fullstack/hyracks/hyracks-api/src/main/java/org/apache/hyracks/api/network/INetworkSecurityConfig.java
index e581c5a..2e00e4d 100644
--- a/hyracks-fullstack/hyracks/hyracks-api/src/main/java/org/apache/hyracks/api/network/INetworkSecurityConfig.java
+++ b/hyracks-fullstack/hyracks/hyracks-api/src/main/java/org/apache/hyracks/api/network/INetworkSecurityConfig.java

@@ -36,6 +36,13 @@
     boolean isSslEnabled();
 
     /**
+     * Indicates if any authentication being performed should mutual (e.g. mTLS, SCRAM-SHA)
+     *
+     * @return true if mutual auth should be used. Otherwise false.
+     */
+    boolean useMutualAuth();
+
+    /**
      * Indicates how to handle client authentication when ssl is enabled
      */
     ClientAuth getClientAuth();

diff --git a/hyracks-fullstack/hyracks/hyracks-ipc/src/main/java/org/apache/hyracks/ipc/security/NetworkSecurityConfig.java b/hyracks-fullstack/hyracks/hyracks-ipc/src/main/java/org/apache/hyracks/ipc/security/NetworkSecurityConfig.java
index a8bd087..03cdbe9 100644
--- a/hyracks-fullstack/hyracks/hyracks-ipc/src/main/java/org/apache/hyracks/ipc/security/NetworkSecurityConfig.java
+++ b/hyracks-fullstack/hyracks/hyracks-ipc/src/main/java/org/apache/hyracks/ipc/security/NetworkSecurityConfig.java

@@ -70,6 +70,11 @@
     }
 
     @Override
+    public boolean useMutualAuth() {
+        return false;
+    }
+
+    @Override
     public ClientAuth getClientAuth() {
         return ClientAuth.NONE;
     }