hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-8512) AuthenticatedURL should reset the Token when the server returns other than OK on authentication
Date Tue, 19 Jun 2012 14:15:43 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-8512?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13396782#comment-13396782
] 

Hudson commented on HADOOP-8512:
--------------------------------

Integrated in Hadoop-Mapreduce-trunk #1114 (See [https://builds.apache.org/job/Hadoop-Mapreduce-trunk/1114/])
    HADOOP-8512. AuthenticatedURL should reset the Token when the server returns other than
OK on authentication (tucu) (Revision 1351408)

     Result = FAILURE
tucu : http://svn.apache.org/viewcvs.cgi/?root=Apache-SVN&view=rev&rev=1351408
Files : 
* /hadoop/common/trunk/hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/client/AuthenticatedURL.java
* /hadoop/common/trunk/hadoop-common-project/hadoop-auth/src/test/java/org/apache/hadoop/security/authentication/client/TestAuthenticatedURL.java
* /hadoop/common/trunk/hadoop-common-project/hadoop-common/CHANGES.txt

                
> AuthenticatedURL should reset the Token when the server returns other than OK on authentication
> -----------------------------------------------------------------------------------------------
>
>                 Key: HADOOP-8512
>                 URL: https://issues.apache.org/jira/browse/HADOOP-8512
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 2.0.0-alpha
>            Reporter: Alejandro Abdelnur
>            Assignee: Alejandro Abdelnur
>            Priority: Minor
>             Fix For: 1.2.0, 2.0.1-alpha
>
>         Attachments: HADOOP-8512.patch, HADOOP-8512b1.patch
>
>
> Currently the token is not being reset and if using AuthenticatedURL, it will keep sending
the invalid token as Cookie. There is not security concern with this, the main inconvenience
is the logging being generated on the server side.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message