hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Venkat Ranganathan (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-4126) RM should not issue delegation tokens in unsecure mode
Date Fri, 21 Oct 2016 19:26:58 GMT

    [ https://issues.apache.org/jira/browse/YARN-4126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15596091#comment-15596091
] 

Venkat Ranganathan commented on YARN-4126:
------------------------------------------

While myself, [~jianhe] and [~vinodkv] were debugging some Yarn issues with RM delegation
tokens, we thought it would be good to stop issuing RM delegation tokens in a non-secure cluster
because If the token is there, it is used and the expiration of the token is not handled correctly
with no renewers. 

We can revert it probably from branch-2 for existing applications like Oozie   

> RM should not issue delegation tokens in unsecure mode
> ------------------------------------------------------
>
>                 Key: YARN-4126
>                 URL: https://issues.apache.org/jira/browse/YARN-4126
>             Project: Hadoop YARN
>          Issue Type: Bug
>            Reporter: Jian He
>            Assignee: Bibin A Chundatt
>             Fix For: 2.8.0, 3.0.0-alpha1
>
>         Attachments: 0001-YARN-4126.patch, 0002-YARN-4126.patch, 0003-YARN-4126.patch,
0004-YARN-4126.patch, 0005-YARN-4126.patch, 0006-YARN-4126.patch
>
>
> ClientRMService#getDelegationToken is currently  returning a delegation token in insecure
mode. We should not return the token if it's in insecure mode. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: yarn-issues-help@hadoop.apache.org


Mime
View raw message