hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Daryn Sharp (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-8779) Use tokens regardless of authentication type
Date Mon, 10 Sep 2012 15:12:08 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-8779?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13452054#comment-13452054
] 

Daryn Sharp commented on HADOOP-8779:
-------------------------------------

I don't mind what jargon we use.  We'll call tokens another auth method.
bq. Secondly, this JIRA is not needed; it is already assumed by HADOOP-8758. The decoupling
of Kerberos from existing delegation token implementations [...]

The intention of this jira is to break the artificial limitation that the client will not
request tokens if auth is simple, and the server will refuse tokens if the auth is simple.

I split this off because it's a much simpler high value change that will prevent HADOOP-8785
from being a big-bang patch.  If you think this should be a sub-task, I think that's reasonable.
                
> Use tokens regardless of authentication type
> --------------------------------------------
>
>                 Key: HADOOP-8779
>                 URL: https://issues.apache.org/jira/browse/HADOOP-8779
>             Project: Hadoop Common
>          Issue Type: New Feature
>          Components: fs, security
>    Affects Versions: 3.0.0, 2.0.2-alpha
>            Reporter: Daryn Sharp
>            Assignee: Daryn Sharp
>
> Security is a combination of authentication and authorization (tokens).  Authorization
may be granted independently of the authentication model.  Tokens should be used regardless
of simple or kerberos authentication.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message