Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-10648 Service Authorization Improvements
  3. HADOOP-10654

Support pluggable mechanism to specify Service Authorization

Add voteVotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • security
    • None

    Description

      The service authorization can be specified via hadoop-policy.xml for different services(protocols) using ACLS ( list of users and groups) . The other subtasks will improve the standard behavior.

      In some case, further special handling is required to restrict access based on few other external characteristics of the user for special clusters. Such special authorization requirements can be met if it is possible to plugin authorization mechanisms at this point.

      Attachments

        1. HADOOP-10654.patch
          37 kB
          Benoy Antony

        Issue Links

        depends upon

        Sub-task - The sub-task of the issue HADOOP-10651 Add ability to restrict service access using IP addresses and hostnames

        • Major - Major loss of function.
        • Closed

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            benoyantony Benoy Antony
            benoyantony Benoy Antony
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:

              Slack

                Issue deployment