Uploaded image for project: 'Flink'
  1. Flink
  2. FLINK-18045

Fix Kerberos credentials checking to unblock Flink on secured MapR

    XMLWordPrintableJSON

Details

    Description

      I was not able to run Flink 1.10.1 on YARN on a a secured MapR cluster, but the previous version (1.10.0) works fine.

      After some investigation it looks like during some refactoring, checking if the enabled security method is kerberos was removed, effectively reintroducing https://issues.apache.org/jira/browse/FLINK-5949

       

      Refactoring commit: https://github.com/apache/flink/commit/8751e69037d8a9b1756b75eed62a368c3ef29137

       

      My proposal would be to bring back the kerberos check:

      loginUser.getAuthenticationMethod() == UserGroupInformation.AuthenticationMethod.KERBEROS

      and add an unit test for that case to prevent it from happening again

      I'm happy to prepare a PR after reaching consensus

      Attachments

        Issue Links

          is caused by

          Sub-task - The sub-task of the issue FLINK-15561 Unify Kerberos credentials checking

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #12462

          Activity

            People

              krasinski Bart Krasinski
              krasinski Bart Krasinski
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: