[HADOOP-13474] Add more details in the log when a token is expired - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Resolved
Priority: Major
Resolution: Won't Fix
Affects Version/s: 2.6.0
Fix Version/s: None
Component/s: security
Labels:
None

Target Version/s:

2.9.0

Description

Currently when there's an expired token, we see this from the log:

2016-08-06 07:13:20,807 WARN org.apache.hadoop.security.authentication.server.AuthenticationFilter: AuthenticationToken ignored: AuthenticationToken expired
2016-08-06 09:55:48,665 WARN org.apache.hadoop.security.authentication.server.AuthenticationFilter: AuthenticationToken ignored: AuthenticationToken expired
2016-08-06 10:01:41,452 WARN org.apache.hadoop.security.authentication.server.AuthenticationFilter: AuthenticationToken ignored: AuthenticationToken expired

We should log a better message, to include more details (e.g. token type, username, tokenid) for trouble-shooting purpose.
I don't think the additional information exposed will lead to any security concern, since the token is expired anyways.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HADOOP-13474.01.patch
09/Aug/16 05:15
1 kB
Xiao Chen

Activity

People

Assignee:: Xiao Chen

Reporter:: Xiao Chen

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 08/Aug/16 21:05

Updated:: 06/Jun/17 22:18

Resolved:: 06/Jun/17 22:18