Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 98BBE200C60 for ; Mon, 24 Apr 2017 19:43:09 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 97896160B99; Mon, 24 Apr 2017 17:43:09 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id E53CA160B93 for ; Mon, 24 Apr 2017 19:43:08 +0200 (CEST) Received: (qmail 44767 invoked by uid 500); 24 Apr 2017 17:43:08 -0000 Mailing-List: contact yarn-issues-help@hadoop.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list yarn-issues@hadoop.apache.org Received: (qmail 44556 invoked by uid 99); 24 Apr 2017 17:43:08 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd4-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 Apr 2017 17:43:08 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd4-us-west.apache.org (ASF Mail Server at spamd4-us-west.apache.org) with ESMTP id 8A651C074C for ; Mon, 24 Apr 2017 17:43:07 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd4-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -99.502 X-Spam-Level: X-Spam-Status: No, score=-99.502 tagged_above=-999 required=6.31 tests=[KAM_NUMSUBJECT=0.5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, USER_IN_WHITELIST=-100] autolearn=disabled Received: from mx1-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd4-us-west.apache.org [10.40.0.11]) (amavisd-new, port 10024) with ESMTP id FNu6QvNXpxV3 for ; Mon, 24 Apr 2017 17:43:05 +0000 (UTC) Received: from mailrelay1-us-west.apache.org (mailrelay1-us-west.apache.org [209.188.14.139]) by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTP id 2DA715FC4D for ; Mon, 24 Apr 2017 17:43:05 +0000 (UTC) Received: from jira-lw-us.apache.org (unknown [207.244.88.139]) by mailrelay1-us-west.apache.org (ASF Mail Server at mailrelay1-us-west.apache.org) with ESMTP id 765CDE093E for ; Mon, 24 Apr 2017 17:43:04 +0000 (UTC) Received: from jira-lw-us.apache.org (localhost [127.0.0.1]) by jira-lw-us.apache.org (ASF Mail Server at jira-lw-us.apache.org) with ESMTP id 33B9321B56 for ; Mon, 24 Apr 2017 17:43:04 +0000 (UTC) Date: Mon, 24 Apr 2017 17:43:04 +0000 (UTC) From: "Varun Saxena (JIRA)" To: yarn-issues@hadoop.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Commented] (YARN-3053) [Security] Review and implement authentication in ATS v.2 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 archived-at: Mon, 24 Apr 2017 17:43:09 -0000 [ https://issues.apache.org/jira/browse/YARN-3053?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15981565#comment-15981565 ] Varun Saxena commented on YARN-3053: ------------------------------------ Thanks [~rkanter] for your comments. Sorry was on leave so could not reply. The reason I had chosen approach 1 is due to minimum amount of change required for it. We already have client and server side filter code for ATSv1 which could be reused with approach 1. Also the con I pointed out for approach 1 i.e. AM having to get the token from Allocate Response, I thought would be fine because AM would anyways have to change to publish entities to ATSv2 as the APIs' are new. With approach 2, we would have to still pass on the token from RM-> NM-> Collector as in the end entities would be directly published by AM to Collector. This would mean introduction of a new message in Collector Manager protocol. The design for offline collectors is not yet decided but in future, we would probably let clients ask for token directly from Collector as well. The issue I pointed out with clash of IDs' would mean that we would have to probably differentiate between token generated by collector itself and one generated by RM. Probably differentiate on the basis of token kind. This, however doable, would mean additional changes at both the client and server side. Moreover, we would need to also store the token in a state store even for managed apps to ensure app token is available across collector restarts. Do you see any major issues with approach 1? > [Security] Review and implement authentication in ATS v.2 > --------------------------------------------------------- > > Key: YARN-3053 > URL: https://issues.apache.org/jira/browse/YARN-3053 > Project: Hadoop YARN > Issue Type: Sub-task > Components: timelineserver > Reporter: Sangjin Lee > Assignee: Varun Saxena > Labels: YARN-5355, yarn-5355-merge-blocker > Attachments: ATSv2Authentication(draft).pdf, ATSv2Authentication.v01.pdf > > > Per design in YARN-2928, we want to evaluate and review the system for security, and ensure proper security in the system. > This includes proper authentication, token management, access control, and any other relevant security aspects. -- This message was sent by Atlassian JIRA (v6.3.15#6346) --------------------------------------------------------------------- To unsubscribe, e-mail: yarn-issues-unsubscribe@hadoop.apache.org For additional commands, e-mail: yarn-issues-help@hadoop.apache.org