Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-13441

Document LdapGroupsMapping keystore password properties

    Details

      Description

      A few properties are not documented.
      hadoop.security.group.mapping.ldap.ssl.keystore.password
      This property is used as an alias to get password from credential providers, or, fall back to using the value as password in clear text. There is also a caveat that credential providers can not be a HDFS-based file system, as mentioned in HADOOP-11934, to prevent cyclic dependency issue.
      This should be documented in core-default.xml and GroupsMapping.md

      hadoop.security.credential.clear-text-fallback
      This property controls whether or not to fall back to storing credential password as cleartext.
      This should be documented in core-default.xml.

      hadoop.security.credential.provider.path
      This is mentioned in CredentialProvider API Guide, but not in core-default.xml

      The "Supported Features" in CredentialProvider API Guide should link back to GroupsMapping.md#LDAP Groups Mapping

      hadoop.security.credstore.java-keystore-provider.password-file
      This is the password file to protect credential files.

        Attachments

        1. HADOOP-13441.005.patch
          14 kB
          Yuanbo Liu
        2. HADOOP-13441.004.patch
          14 kB
          Yuanbo Liu
        3. HADOOP-13441.003.patch
          8 kB
          Yuanbo Liu
        4. HADOOP-13441.002.patch
          6 kB
          Yuanbo Liu
        5. HADOOP-13441.001.patch
          5 kB
          Yuanbo Liu

          Activity

            People

            • Assignee:
              yuanbo Yuanbo Liu
              Reporter:
              jojochuang Wei-Chiu Chuang
            • Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: