Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-10671

Unify and simplify common configurations for authentication filters between web console and web hdfs

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Patch Available
    • Major
    • Resolution: Unresolved
    • None
    • None
    • security

    Description

      Currently it's not able to single sign on between hadoop web console and webhdfs since they don't share common configurations as required to, such as signature secret to sign authenticaton token, and domain cookie etc. This improvement would allow sso between the two, and also simplify the configuration by removing the duplicate effort for the two parts.

      The sso makes sense because in current web console, it integrates webhdfs and we should avoid redundant sign on in different mechanisms. This is necessary when a certain authentication mechanism other than SPNEGO is desired across web console and webhdfs.

      Attachments

        1. hadoop-10671.patch
          2 kB
          Kai Zheng
        2. hadoop-10671-v2.patch
          3 kB
          Kai Zheng
        3. HADOOP-10671-v3.patch
          8 kB
          Kai Zheng

        Issue Links

          is related to

          New Feature - A new feature of the product, which has yet to be developed. HADOOP-10679 Authorize webui access using ServiceAuthorizationManager

          • Major - Major loss of function.
          • Patch Available
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-10709 Reuse Filters across web apps

          • Major - Major loss of function.
          • Patch Available

          Activity

            People

              drankye Kai Zheng
              drankye Kai Zheng
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated: