Thanks Wei-Chiu Chuang for creating the patch. I have three comments:
To enable SSL for web console of HDFS daemons, set `dfs.http.policy` to either `HTTPS_ONLY` or `HTTP_AND_HTTPS` in hdfs-site.xml.
To enable SSL for web console of YARN daemons, set `yarn.http.policy` to `HTTPS_ONLY` in yarn-site.xml.
To enable SSL for web console of MapReduce JobHistory server, set `mapreduce.jobhistory.http.policy` to `HTTPS_ONLY` in mapred-site.xml.
The patch says HTTP_AND_HTTPS does not work in MapReduce JHS and YARN daemons, which contradicts TimelineServer.md.
Note that the selection between the HTTP and HTTPS binding is made in the `TimelineClient` based
upon the value of the YARN-wide configuration option `yarn.http.policy`; the HTTPS endpoint will be
selected if this policy is either of `HTTPS_ONLY` or `HTTP_AND_HTTPS`.
If the patch is right, we should fix TimelineServer.md as well.
2. The patch need to be rebased.
3. Would you document that "dfs.namenode.https-address" and "yarn.resourcemanager.webapp.https.address" are the parameter for non-HA? In HA environment, we need <nn_id>/<rm_id> after the parameters.