hadoop-common-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Gregory Chanan (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HADOOP-10193) hadoop-auth's PseudoAuthenticationHandler can consume getInputStream
Date Sat, 28 Dec 2013 01:14:50 GMT
Gregory Chanan created HADOOP-10193:
---------------------------------------

             Summary: hadoop-auth's PseudoAuthenticationHandler can consume getInputStream
                 Key: HADOOP-10193
                 URL: https://issues.apache.org/jira/browse/HADOOP-10193
             Project: Hadoop Common
          Issue Type: Bug
          Components: security
            Reporter: Gregory Chanan
            Assignee: Gregory Chanan
            Priority: Minor
             Fix For: 3.0.0


I'm trying to use the AuthenticationFilter in front of Apache Solr.  The issue I'm running
into is that the PseudoAuthenticationHandler calls ServletRequest.getParameter which affects
future calls to ServletRequest.getInputStream.  I.e. from the javadoc:

{code}
If the parameter data was sent in the request body, such as occurs with an HTTP POST request,
then reading the body directly via getInputStream() or getReader() can interfere with the
execution of this method. 
{code}

Solr calls getInputStream after the filter and errors result.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

Mime
View raw message