hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rohith Sharma K S (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-7059) Use app user to publish entities from NM
Date Thu, 14 Sep 2017 07:14:00 GMT

    [ https://issues.apache.org/jira/browse/YARN-7059?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16165860#comment-16165860

Rohith Sharma K S commented on YARN-7059:

Testing in non secured cluster end up in  below exception while publishing entities. Looks
like doAs can't be used in non-secured cluster. 
Caused by: org.apache.hadoop.security.authentication.client.AuthenticationException: Authentication
failed, URL: http://localhost:51202/ws/v2/timeline/entities?async=false&appid=application_1505301950752_0001&doAs=user1&user.name=rohith,
status: 403, message: Forbidden

> Use app user to publish entities from NM
> ----------------------------------------
>                 Key: YARN-7059
>                 URL: https://issues.apache.org/jira/browse/YARN-7059
>             Project: Hadoop YARN
>          Issue Type: Sub-task
>          Components: timelineclient, timelinereader, timelineserver
>            Reporter: Varun Saxena
>            Assignee: Varun Saxena
>         Attachments: YARN-7059.01.patch
> Currently NM login UGI is used to publish entities from NM to app collector. 
> This can lead to writes happening in sub application table. This JIRA is to use app user
to publish entities from NM.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: yarn-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: yarn-issues-help@hadoop.apache.org

View raw message