hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Benoy Antony (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-10654) Support pluggable mechanism to specify Service Authorization
Date Wed, 09 Jul 2014 14:02:05 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-10654?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14056255#comment-14056255
] 

Benoy Antony commented on HADOOP-10654:
---------------------------------------

The framework changes due to HADOOP-10679. So the customization feature needs to be added
after HDOOP-10679. It is currently included with  HADOOP-10679. 

> Support pluggable mechanism to specify Service Authorization
> ------------------------------------------------------------
>
>                 Key: HADOOP-10654
>                 URL: https://issues.apache.org/jira/browse/HADOOP-10654
>             Project: Hadoop Common
>          Issue Type: Sub-task
>          Components: security
>            Reporter: Benoy Antony
>            Assignee: Benoy Antony
>         Attachments: HADOOP-10654.patch
>
>
> The service authorization can be specified via hadoop-policy.xml for different services(protocols)
using ACLS ( list of users and groups) . The other subtasks will improve the standard behavior.

> In some case, further special handling is required to restrict access based on few other
external characteristics of the user for special clusters. Such special authorization requirements
can be met if it is possible to plugin authorization mechanisms at this point.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message