Trino HTTP Group Provider

A Trino plugin that enables group retrieval from an HTTP endpoint for user authorization and access control.

Features

HTTP-based group provider for Trino
Configurable endpoint URL
Bearer token authentication support
Fault-tolerant HTTP client implementation
Compatible with Trino's security model

Requirements

Java 24
Maven 3.9.11 or later
Trino server (tested with version 429)

Installation

Build the plugin:
```
mvn clean package
```

Copy the plugin to your Trino installation:

cp -r target/trino-http-group-provider-{version} $TRINO_HOME/plugin/http-group-provider/

Configuration

Create etc/group-provider.properties in your Trino configuration directory:

group-provider.name=http
http-group-provider.endpoint=https://your-api-endpoint/groups
http-group-provider.auth-token=your-bearer-token

HTTP Endpoint Requirements

The HTTP server should expose an endpoint compatible with Open Policy Agent (OPA) input/output formats.

The HTTP endpoint should:

Accept POST requests
Return a JSON object with the result key containing a list of strings representing group names
Use Bearer token authentication (if needed)
Return 404 (or other non 2XX status code) for unknown users

Request Format

{
  "input": {
    "user": "<username>"
  }
}

Response Format

{
  "result": [
    "<group>",
    "<group>"
  ]
}

Building from Source

git clone https://github.com/baptistegh/trino-http-group-provider.git
cd trino-http-group-provider
mvn clean verify

Running Tests

The project includes both unit and integration tests using JUnit 5:

Run unit tests only:
```
mvn test
```
Run all tests (including integration tests):
```
mvn verify
```
Run code style check:
```
mvn checkstyle:check
```

The project uses Google Java Style for code formatting.

Docker

A Dockerfile is provided to build and package the plugin:

docker build -t trino-http-group-provider .

Contributing

Fork the repository
Create your feature branch: git checkout -b feature/my-new-feature
Commit your changes: git commit -am 'Add some feature'
Push to the branch: git push origin feature/my-new-feature
Submit a pull request

License

This project is licensed under the Apache License 2.0 - see the LICENSE file for details.

Support

For issues, questions, or contributions, please create an issue in the GitHub repository.

Name		Name	Last commit message	Last commit date
Latest commit History 63 Commits
.github/workflows		.github/workflows
config		config
run		run
src		src
.gitignore		.gitignore
.release-please-config.json		.release-please-config.json
CHANGELOG.md		CHANGELOG.md
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
pom.xml		pom.xml
renovate.json		renovate.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Trino HTTP Group Provider

Features

Requirements

Installation

Configuration

HTTP Endpoint Requirements

Request Format

Response Format

Building from Source

Running Tests

Docker

Contributing

License

Support

About

Uh oh!

Releases 3

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Trino HTTP Group Provider

Features

Requirements

Installation

Configuration

HTTP Endpoint Requirements

Request Format

Response Format

Building from Source

Running Tests

Docker

Contributing

License

Support

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 3

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages