hadoop-common-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alejandro Abdelnur (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HADOOP-8465) hadoop-auth should support ephemeral authentication
Date Fri, 01 Jun 2012 20:40:23 GMT
Alejandro Abdelnur created HADOOP-8465:

             Summary: hadoop-auth should support ephemeral authentication
                 Key: HADOOP-8465
                 URL: https://issues.apache.org/jira/browse/HADOOP-8465
             Project: Hadoop Common
          Issue Type: New Feature
          Components: security
    Affects Versions: 2.0.1-alpha
            Reporter: Alejandro Abdelnur
            Assignee: Alejandro Abdelnur
             Fix For: 2.0.1-alpha

Currently, once a client is authenticated the generated authentication-token (& cookie)
are valid for a given (service configurable) lifespan.

Once the authentication-token (& cookie) is issued, the authentication logic will not
be triggered until the authentication-token expires.

This behavior does not work well with delegation tokens expected behavior where delegation
tokens can be canceled at any time.

Having ephemeral authentication (which is check on every request) would address this issue.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira


View raw message