Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-10850

KerberosAuthenticator should not do the SPNEGO handshake

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 2.4.1
    • None
    • security
    • None

    Description

      As mentioned in HADOOP-10453, the JDK automatically does a SPNEGO handshake when opening a connection with a URL within a Kerberos login context, there is no need to do the SPNEGO handshake in the KerberosAuthenticator, simply extract the auth token (hadoop-auth cookie) and do the fallback if necessary.

      Attachments

        1. HADOOP-10850.patch
          22 kB
          Alejandro Abdelnur
        2. testFailures.png
          230 kB
          Alejandro Abdelnur
        3. testorder.patch
          4 kB
          Alejandro Abdelnur

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-12787 KMS SPNEGO sequence does not work with WEBHDFS

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              tucu00 Alejandro Abdelnur
              tucu00 Alejandro Abdelnur
              Votes:
              0 Vote for this issue
              Watchers:
              14 Start watching this issue

              Dates

                Created:
                Updated: