hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sunil G (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-7862) YARN native service REST endpoint needs user.name as query param
Date Wed, 31 Jan 2018 17:46:00 GMT

    [ https://issues.apache.org/jira/browse/YARN-7862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16347258#comment-16347258

Sunil G commented on YARN-7862:

bq.If you have obtained delegation token somehow, then you can forward the cookie to:

In case of non-kerberized cluster, how this delegation token can be obtained?

> YARN native service REST endpoint needs user.name as query param
> ----------------------------------------------------------------
>                 Key: YARN-7862
>                 URL: https://issues.apache.org/jira/browse/YARN-7862
>             Project: Hadoop YARN
>          Issue Type: Bug
>          Components: yarn-native-services
>            Reporter: Sunil G
>            Priority: Major
> While accessing below yarn rest end point with POST method type,
> {code:java}
> http://rm_ip:8088/app/v1/services{code}
> below error is coming in non-secure cluster.
> {noformat}
> {
> "diagnostics": "Null user"
> }{noformat}
> When *user.name* is provided as query param with *dr.who* we can see that yarn started
service with proxy user, not dr.who. 
> In non-secure cluster, native service should ideally take the user from remote ugi.
> in secure cluster, its better to derive user from kerberized shell.
> cc/  [~jianhe] [~eyang]

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: yarn-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: yarn-issues-help@hadoop.apache.org

View raw message