The cluster setting server.identity_map.configuration can be used in a diversity of deployment types.
In particular, it is central to GSSAPI/Kerberos authentication.
And it can also be used with other authentication methods.
Currently, this setting is only mentioned in the context of JWT / SSO authn, which suggests (incorrectly) that is its only purpose.
Instead, there should be a wider context explanation that various authn methods can use external identities and that this is the shared mechanism used to map them to internal identities.
knz
commented
1 year ago
Raphael ‘kena’ Poss (knz) commented:
What is the reason for your feedback?
The cluster setting
server.identity_map.configurationcan be used in a diversity of deployment types. In particular, it is central to GSSAPI/Kerberos authentication. And it can also be used with other authentication methods.Currently, this setting is only mentioned in the context of JWT / SSO authn, which suggests (incorrectly) that is its only purpose.
Instead, there should be a wider context explanation that various authn methods can use external identities and that this is the shared mechanism used to map them to internal identities.
cc @mikeCRL for triage
Jira Issue: DOC-7219