Details
-
Bug
-
Status: Open
-
Major
-
Resolution: Unresolved
-
2.9.2
-
None
-
None
-
None
Description
HadoopArchiveLogsRunner runs in the Yarn Container via DistributedShell.
The Client of the DistributedShell gets the Token and uses it for the Runner.
The Runner create ProxyUser via Token, which violates the ProxyUser principle.
There are two solutions:
1. Pass the Keytab to the Runner, login with Keytab and create ProxyUser.
2. Run the HadoopArchiveLogs task with HDFS Super User. After the Archive is finished, use chown to modify it to the corresponding user.
I prefer to use the first way to solve the problem. Any suggestions?
Attachments
Issue Links
- is related to
-
MAPREDUCE-6415 Create a tool to combine aggregated logs into HAR files
- Resolved