hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Vinod Kumar Vavilapalli (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-11310) Load AuthenticationFilter config params from core-site.xml
Date Mon, 17 Nov 2014 20:51:34 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-11310?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14215145#comment-14215145
] 

Vinod Kumar Vavilapalli commented on HADOOP-11310:
--------------------------------------------------

bq. AuthenticationFilter exposes several configuration params such as AuthenticationFilter#AUTH_TOKEN_VALIDITY.
Normally these params go into web.xml
The corresponding filter-initializers like AuthenticationFilterInitializer already read core-site.xml
and pass configs down, no?

> Load AuthenticationFilter config params from core-site.xml
> ----------------------------------------------------------
>
>                 Key: HADOOP-11310
>                 URL: https://issues.apache.org/jira/browse/HADOOP-11310
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: security
>    Affects Versions: 2.5.1
>            Reporter: Kannan Rajah
>            Assignee: Kannan Rajah
>            Priority: Minor
>
> AuthenticationFilter exposes several configuration params such as
> AuthenticationFilter#AUTH_TOKEN_VALIDITY. Normally these params go into web.xml. The
limitation of this approach is that each webserver (RM/NM/HBase) has to configure these params
separately in the corresponding web.xml files.
> To address this use case, we can create a new class called HadoopCoreAuthenticationFilter
that extends AuthenticationFilter and overrides the getConfiguration method to get the config
params from core-site.xml as well. All the webservers that depend on hadoop core automatically
get a single config defined in core-site.xml.
> The config in core-site.xml looks like this:
> <property>
>   <name>hadoop.http.authentication.signature.secret</name>
>   <value>13048203948239</value>
> </property>
> <property>
>   <name>hadoop.http.authentication.token.validity</name>
>   <value>48</value>
> </property>



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message