Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id D66F5200BEF for ; Wed, 4 Jan 2017 12:23:00 +0100 (CET) Received: by cust-asf.ponee.io (Postfix) id D4EF2160B39; Wed, 4 Jan 2017 11:23:00 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 266B9160B3A for ; Wed, 4 Jan 2017 12:22:59 +0100 (CET) Received: (qmail 44003 invoked by uid 500); 4 Jan 2017 11:22:58 -0000 Mailing-List: contact common-issues-help@hadoop.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list common-issues@hadoop.apache.org Received: (qmail 43977 invoked by uid 99); 4 Jan 2017 11:22:58 -0000 Received: from arcas.apache.org (HELO arcas) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 04 Jan 2017 11:22:58 +0000 Received: from arcas.apache.org (localhost [127.0.0.1]) by arcas (Postfix) with ESMTP id 774F62C1F56 for ; Wed, 4 Jan 2017 11:22:58 +0000 (UTC) Date: Wed, 4 Jan 2017 11:22:58 +0000 (UTC) From: "Dushyanth (JIRA)" To: common-issues@hadoop.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Updated] (HADOOP-13930) Azure: Add Authorization support to WASB MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 archived-at: Wed, 04 Jan 2017 11:23:01 -0000 [ https://issues.apache.org/jira/browse/HADOOP-13930?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Dushyanth updated HADOOP-13930: ------------------------------- Attachment: HADOOP-13930.002.patch Adding re-based patch and addressing some of Steve's comment. Will address test related comments in the next patch. > Azure: Add Authorization support to WASB > ---------------------------------------- > > Key: HADOOP-13930 > URL: https://issues.apache.org/jira/browse/HADOOP-13930 > Project: Hadoop Common > Issue Type: Improvement > Components: fs/azure > Affects Versions: 2.8.0 > Reporter: Dushyanth > Assignee: Dushyanth > Attachments: HADOOP-13930.001.patch, HADOOP-13930.002.patch > > > As highlighted in HADOOP-13863, current implementation of WASB does not support authorization to any File System operations. This jira is created to add authorization support for WASB. The current approach is to enforce authorization via an external REST service (One approach could be to use component like Ranger to enforce authorization). The support for authorization would be hiding behind a configuration flag : "fs.azure.enable.authorization" and the remote service is expected to be provided via config : "fs.azure.remote.auth.service.url". > The remote service is expected to provide support for the following REST call: {URL}/CHECK_AUTHORIZATION``` > An example request: > {URL}/CHECK_AUTHORIZATION?wasb_absolute_path=&operation_type=&delegation_token= -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org For additional commands, e-mail: common-issues-help@hadoop.apache.org