hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Kevin Minder (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-9653) Token validation and transmission
Date Fri, 21 Jun 2013 15:42:22 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-9653?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13690399#comment-13690399
] 

Kevin Minder commented on HADOOP-9653:
--------------------------------------

To be a bit more concrete about this how would GSS for SASL and SPNEGO be used for say Ping
Federate integration?
                
> Token validation and transmission
> ---------------------------------
>
>                 Key: HADOOP-9653
>                 URL: https://issues.apache.org/jira/browse/HADOOP-9653
>             Project: Hadoop Common
>          Issue Type: Sub-task
>          Components: security
>            Reporter: Kai Zheng
>            Assignee: Kai Zheng
>              Labels: rhino
>             Fix For: 3.0.0
>
>
> HADOOP-9392 proposes to have customizable token authenticator for services to implement
the TokenAuthn method and it was thought supporting pluggable token validation is a significant
feature itself so it serves to be addressed in a separate JIRA. It will also consider how
to securely transmit token in Hadoop RPC in a way the defends against all of the classical
attacks. Note the authentication negotiation and wrapping of Hadoop RPC should be backwards
compatible and interoperable with existing deployments, so therefore be SASL based.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message