Return-Path: 
 <common-issues-return-62370-apmail-hadoop-common-issues-archive=hadoop.apache.org@hadoop.apache.org>
X-Original-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Delivered-To: apmail-hadoop-common-issues-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 2171D11C4D
	for <apmail-hadoop-common-issues-archive@minotaur.apache.org>;
 Mon,  9 Jun 2014 06:00:07 +0000 (UTC)
Received: (qmail 14811 invoked by uid 500); 9 Jun 2014 06:00:06 -0000
Delivered-To: apmail-hadoop-common-issues-archive@hadoop.apache.org
Received: (qmail 14767 invoked by uid 500); 9 Jun 2014 06:00:06 -0000
Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:common-issues-help@hadoop.apache.org>
List-Unsubscribe: <mailto:common-issues-unsubscribe@hadoop.apache.org>
List-Post: <mailto:common-issues@hadoop.apache.org>
List-Id: <common-issues.hadoop.apache.org>
Reply-To: common-issues@hadoop.apache.org
Delivered-To: mailing list common-issues@hadoop.apache.org
Received: (qmail 14756 invoked by uid 99); 9 Jun 2014 06:00:06 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 09 Jun 2014 06:00:06 +0000
Date: Mon, 9 Jun 2014 06:00:06 +0000 (UTC)
From: "Kai Zheng (JIRA)" <jira@apache.org>
To: common-issues@hadoop.apache.org
Message-ID: <JIRA.12719114.1402293510516.92115.1402293606260@arcas>
In-Reply-To: <JIRA.12719114.1402293510516@arcas>
References: <JIRA.12719114.1402293510516@arcas>
Subject: [jira] [Created] (HADOOP-10671) Single sign on between web console
 and webhdfs
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394

Kai Zheng created HADOOP-10671:
----------------------------------

             Summary: Single sign on between web console and webhdfs
                 Key: HADOOP-10671
                 URL: https://issues.apache.org/jira/browse/HADOOP-10671
             Project: Hadoop Common
          Issue Type: Improvement
          Components: security
            Reporter: Kai Zheng
            Assignee: Kai Zheng


Currently it's not able to single sign on between hadoop web console and webhdfs since they don't share common configurations as required to, such as signature secret to sign authenticaton token, and domain cookie etc. This improvement would allow sso between the two, and also simplify the configuration by removing the duplicate effort for the two parts.

The sso makes sense because in current web console, it integrates webhdfs and we should avoid redundant sign on in different mechanisms. This is necessary when a certain authentication mechanism other than SPNEGO is desired across web console and webhdfs.



--
This message was sent by Atlassian JIRA
(v6.2#6252)