hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Daryn Sharp (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-2156) ApplicationMasterService#serviceStart() method has hardcoded AuthMethod.TOKEN as security configuration
Date Thu, 12 Jun 2014 22:11:02 GMT

    [ https://issues.apache.org/jira/browse/YARN-2156?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14029913#comment-14029913
] 

Daryn Sharp commented on YARN-2156:
-----------------------------------

Yes, this is by design.  Yarn uses tokens regardless of your security setting.

> ApplicationMasterService#serviceStart() method has hardcoded AuthMethod.TOKEN as security
configuration
> -------------------------------------------------------------------------------------------------------
>
>                 Key: YARN-2156
>                 URL: https://issues.apache.org/jira/browse/YARN-2156
>             Project: Hadoop YARN
>          Issue Type: Bug
>            Reporter: Svetozar Ivanov
>
> org.apache.hadoop.yarn.server.resourcemanager.ApplicationMasterService#serviceStart()
method has mistakenly hardcoded AuthMethod.TOKEN as Hadoop security authentication. 
> It looks like that:
> {code}
> @Override
>   protected void serviceStart() throws Exception {
>     Configuration conf = getConfig();
>     YarnRPC rpc = YarnRPC.create(conf);
>     InetSocketAddress masterServiceAddress = conf.getSocketAddr(
>         YarnConfiguration.RM_SCHEDULER_ADDRESS,
>         YarnConfiguration.DEFAULT_RM_SCHEDULER_ADDRESS,
>         YarnConfiguration.DEFAULT_RM_SCHEDULER_PORT);
>     Configuration serverConf = conf;
>     // If the auth is not-simple, enforce it to be token-based.
>     serverConf = new Configuration(conf);
>     serverConf.set(
>         CommonConfigurationKeysPublic.HADOOP_SECURITY_AUTHENTICATION,
>         SaslRpcServer.AuthMethod.TOKEN.toString());
>     
> ...
> }
> {code}
> Obviously such code makes sense only if CommonConfigurationKeysPublic.HADOOP_SECURITY_AUTHENTICATION
config setting is missing.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message