hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Daryn Sharp (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-10417) There is no token for anonymous authentication
Date Thu, 27 Mar 2014 16:35:17 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-10417?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13949538#comment-13949538
] 

Daryn Sharp commented on HADOOP-10417:
--------------------------------------

Conceptually, the cookie is a replacement for prior authentication.  Non-anonymous is a fake
type of auth that captures a user name.  Anonymous has no auth so a cookie for anonymous is
bit problematic since you have no user to store in the cookie.

> There is no token for anonymous authentication
> ----------------------------------------------
>
>                 Key: HADOOP-10417
>                 URL: https://issues.apache.org/jira/browse/HADOOP-10417
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: security
>            Reporter: Tsz Wo Nicholas Sze
>         Attachments: TestPseudoAuthenticator.patch
>
>
> According to [~tucu00], if ANONYMOUS is enabled, then there is a token (cookie) and the
response is 200.  However, it never sets cookie when the token is ANONYMOUS in the code below.
> {code}
> //AuthenticationFilter.doFilter(..)
>           if (newToken && !token.isExpired() && token != AuthenticationToken.ANONYMOUS)
{
>             String signedToken = signer.sign(token.toString());
>             createAuthCookie(httpResponse, signedToken, getCookieDomain(),
>                     getCookiePath(), token.getExpires(), isHttps);
>           }
> {code}



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message