Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
Date: Thu, 15 Dec 2016 02:13:59 +0000 (UTC)
From: "Mingliang Liu (JIRA)" <jira@apache.org>
To: common-issues@hadoop.apache.org
Message-ID: <JIRA.13025361.1480802522000.525734.1481768039138@Atlassian.JIRA>
In-Reply-To: <JIRA.13025361.1480802522000@Atlassian.JIRA>
References: <JIRA.13025361.1480802522000@Atlassian.JIRA> <JIRA.13025361.1480802522807@arcas>
Subject: [jira] [Comment Edited] (HADOOP-13863) Azure: Add a new SAS key
 mode for WASB.
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
archived-at: Thu, 15 Dec 2016 02:14:01 -0000


    [ https://issues.apache.org/jira/browse/HADOOP-13863?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15750119#comment-15750119 ] 

Mingliang Liu edited comment on HADOOP-13863 at 12/15/16 2:13 AM:
------------------------------------------------------------------

{quote}
These are azure specific configs name as "fs.zure.*" so not sure if it is a good idean to add them to hadoop-common.
{quote}
{{Configuration}} will load the {{core-default.xml}} file for default values in hadoop common and tools, e.g. {{fs.s3.*}}. I also think it's a good idea to have {{fs.azure.*}} configs in {{core-defaults.xml}} if their default values are not loaded elsewhere.


was (Author: liuml07):
{quote}
These are azure specific configs name as "fs.zure.*" so not sure if it is a good idean to add them to hadoop-common.
{quote}
{{Configuration}} will load the {{core-default.xml}} file for default values in hadoop common and tools, e.g. {{fs.s3.*}}. I also think it's a good idea to have them in {{core-defaults.xml}} if their default values are not loaded elsewhere.

> Azure: Add a new SAS key mode for WASB.
> ---------------------------------------
>
>                 Key: HADOOP-13863
>                 URL: https://issues.apache.org/jira/browse/HADOOP-13863
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: azure, fs/azure
>    Affects Versions: 2.8.0
>            Reporter: Dushyanth
>            Assignee: Dushyanth
>         Attachments: HADOOP-13863.001.patch, HADOOP-13863.002.patch, HADOOP-13863.003.patch, Proposal-Document.pdf
>
>
> Current implementation of WASB, only supports Azure storage keys and SAS key being provided via org.apache.hadoop.conf.Configuration, which results in these secrets residing in the same address space as the WASB process and providing complete access to the Azure storage account and its containers. Added to the fact that WASB does not inherently support ACL's, WASB is its current implementation cannot be securely used for environments like secure hadoop cluster. This JIRA is created to add a new mode in WASB, which operates on Azure Storage SAS keys, which can provide fine grained timed access to containers and blobs, providing a segway into supporting WASB for secure hadoop cluster.
> More details about the issue and the proposal are provided in the design proposal document.


--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org