Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
2.6.3
-
None
-
Reviewed
Description
This was a follow up of my comments for HADOOP-10698.
It blocks a delegation token based user (MR) using WEBHDFS to access KMS server for encrypted files. This might work in many cases before as JDK 7 has been aggressively do SPENGO implicitly. However, this is not the case in JDK 8 as we have seen many failures when using WEBHDFS with KMS and HDFS encryption zone.
Attachments
Attachments
Issue Links
- is related to
-
HADOOP-10453 Do not use AuthenticatedURL in hadoop core
- Open
-
HADOOP-10850 KerberosAuthenticator should not do the SPNEGO handshake
- Open