hadoop-hdfs-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Visioner Sadak <visioner.sa...@gmail.com>
Subject Re: hadoop web UI security
Date Wed, 11 Sep 2013 10:08:41 GMT
any hints hadoopers we have a prod deployment today & my manager is
killling me .......................[?][?]


On Wed, Sep 11, 2013 at 1:16 PM, Visioner Sadak <visioner.sadak@gmail.com>wrote:

> Hello friends i m using the below configuration to hide hadoop web UI  the
> problem is that when i access
>
> http://192.34.8.8:50070/    it  works properly and blocks access but when
> i use
>
>
> http://192.34.8.8:50070/dfshealth.jsp?user.name=blahblahh(anyusername)...... it failes
and allows access even if i set my signature
> username as hadoopuser
>
> its allowing  access for any  username
>
>
> <property>
> <name>hadoop.http.filter.initializers</name>
>  <value>org.apache.hadoop.security.AuthenticationFilterInitializer</value>
> </property>
>
> <property>
> <name>hadoop.http.authentication.type</name>
>  <value>simple</value>
> </property>
>
> <property>
>  <name>hadoop.http.authentication.token.validity</name>
>  <value>60</value>
> </property>
>
> <property>
> <name>hadoop.http.authentication.signature.secret.file</name>
> <value>/home/hadoop/hadoop-0.23.3/conf/security/username</value>
> </property>
>
> <property>
> <name>hadoop.http.authentication.cookie.domain</name>
> <value>
> </value>
> </property>
>
> <property>
> <name>hadoop.http.authentication.simple.anonymous.allowed</name>
> <value>false</value>
> </property>
>

Mime
View raw message