hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Zhijie Shen (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (HADOOP-11215) DT management ops in DelegationTokenAuthenticatedURL assume the authenticator is KerberosDelegationTokenAuthenticator
Date Tue, 21 Oct 2014 03:15:33 GMT

     [ https://issues.apache.org/jira/browse/HADOOP-11215?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Zhijie Shen updated HADOOP-11215:
---------------------------------
    Labels:   (was: se)

> DT management ops in DelegationTokenAuthenticatedURL assume the authenticator is KerberosDelegationTokenAuthenticator
> ---------------------------------------------------------------------------------------------------------------------
>
>                 Key: HADOOP-11215
>                 URL: https://issues.apache.org/jira/browse/HADOOP-11215
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: security
>            Reporter: Zhijie Shen
>
> Here's the code in get/renew/cancel DT:
> {code}
>       return ((KerberosDelegationTokenAuthenticator) getAuthenticator()).
>           renewDelegationToken(url, token, token.delegationToken, doAsUser);
> {code}
> It seems not to be right because PseudoDelegationTokenAuthenticator should work here
as well. At least, it is inconsistent in the context of delegation token authentication, as
DelegationTokenAuthenticationHandler doesn't require the authentication must be Kerberos.




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message