[HADOOP-11726] Allow applications to access both secure and insecure clusters at the same time - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Description

Today there are multiple integration issues when an application (particularly, distcp) access both secure and insecure clusters (e.g., ~~HDFS-6776~~ / HDFS-7036)

There are four use cases in this scenario:

Secure <-> Secure. Works.
Insecure <-> Insecure. Works.
Accessing secure clusters from insecure client. Will not work as expected. The insecure client won't be able to be authenticated with the secure client, otherwise it is a security vulnerability.
Accessing insecure clusters from secure client. Currently it will not work as the secure client won't be able to obtain a delegation token from the insecure cluster.

This jira proposes to fix the last use case.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Haohui Mai

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 18/Mar/15 19:55

Updated:: 23/Mar/15 21:36