hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alejandro Abdelnur (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-8458) Add management hook to AuthenticationHandler to enable delegation token operations support
Date Mon, 11 Jun 2012 18:42:43 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-8458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13292962#comment-13292962
] 

Alejandro Abdelnur commented on HADOOP-8458:
--------------------------------------------

@Daryn, any update on your side? BTW, don't see how this JIRA would affect host-based tokens
as it is only enabling a mechanism for the authhandler to perform auth management operations.
                
> Add management hook to AuthenticationHandler to enable delegation token operations support
> ------------------------------------------------------------------------------------------
>
>                 Key: HADOOP-8458
>                 URL: https://issues.apache.org/jira/browse/HADOOP-8458
>             Project: Hadoop Common
>          Issue Type: New Feature
>          Components: security
>    Affects Versions: 2.0.1-alpha
>            Reporter: Alejandro Abdelnur
>            Assignee: Alejandro Abdelnur
>             Fix For: 2.0.1-alpha
>
>         Attachments: HADOOP-8458.patch
>
>
> Currently hadoop-auth AuthenticationHandler only authenticates a request.
> While it can easily be extended to authenticate delegation tokens, it cannot handle the
delegation token get/renew/cancel operations.
> The motivation of this new feature is that the above delegation token operations should
be handled by a security component (hadoop-auth) instead of a functional component (httpfs
implementation). Ideally we should have a complete separation of concerns between delegation
token management and FileSystem/MapReduce/YARN API, but we don't. This change is a step on
that directory for HTTP based services (like HttpFS).

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message