hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bibin A Chundatt (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-4126) RM should not issue delegation tokens in unsecure mode
Date Fri, 11 Sep 2015 05:33:46 GMT

    [ https://issues.apache.org/jira/browse/YARN-4126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14740221#comment-14740221
] 

Bibin A Chundatt commented on YARN-4126:
----------------------------------------

Hi [~jianhe]

The test classes required updation were as below 

TestClientRMService
TestRMDelegation
TokensTestRMWebServicesDelegationTokens

All testcases related to token were written in non secure mode.After the change made in fix
for disabling token in non secure mode all token related test cases started failing.Because
as per the new condition only in secure mode & AuthenticationMethod=kerberos will get
the delegation token.

Also {{TestClientRMService}} contains testcases with non secure mode(12) and secure(8) mode.
For testcases related to token  had to create state *Kerberos+Secured* . Method *initializeUserGroupSecureMode*
was created for the same in which authentication Method as kerberos is set for {{UserGroupInformation}}.

*UserGroupInformation* state had to be set only for few test cases so initialization in before
class was not a choice .
Any other suggestion if you are having please do share, will try my best .

> RM should not issue delegation tokens in unsecure mode
> ------------------------------------------------------
>
>                 Key: YARN-4126
>                 URL: https://issues.apache.org/jira/browse/YARN-4126
>             Project: Hadoop YARN
>          Issue Type: Bug
>            Reporter: Jian He
>            Assignee: Bibin A Chundatt
>         Attachments: 0001-YARN-4126.patch, 0002-YARN-4126.patch, 0003-YARN-4126.patch,
0004-YARN-4126.patch, 0005-YARN-4126.patch
>
>
> ClientRMService#getDelegationToken is currently  returning a delegation token in insecure
mode. We should not return the token if it's in insecure mode. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message