Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-10850

KerberosAuthenticator should not do the SPNEGO handshake

Log workAgile BoardRank to TopRank to BottomAttach filesAttach ScreenshotBulk Copy AttachmentsBulk Move AttachmentsAdd voteVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 2.4.1
    • None
    • security
    • None

    Description

      As mentioned in HADOOP-10453, the JDK automatically does a SPNEGO handshake when opening a connection with a URL within a Kerberos login context, there is no need to do the SPNEGO handshake in the KerberosAuthenticator, simply extract the auth token (hadoop-auth cookie) and do the fallback if necessary.

      Attachments

        1. HADOOP-10850.patch
          22 kB
          Alejandro Abdelnur
        2. testFailures.png
          230 kB
          Alejandro Abdelnur
        3. testorder.patch
          4 kB
          Alejandro Abdelnur

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            tucu00 Alejandro Abdelnur Assign to me
            tucu00 Alejandro Abdelnur

            Dates

              Created:
              Updated:

              Slack

                Issue deployment