Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-14764 Über-jira adl:// Azure Data Lake Phase II: Performance, Resilience and Testing
  3. HADOOP-14579

Add Kerberos and Delegation token support to ADLS client

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Resolved
    • Major
    • Resolution: Won't Fix
    • 2.8.0
    • None
    • fs/adl
    • None

    Description

      Current implementation of Azure storage client for Hadoop (ADLS) does not support Kerberos Authentication and FileSystem authorization, which makes it unusable in secure environments with multi user setup.
      To make ADLS client more suitable to run in Secure environments, HADOOP-14565 is under way for providing the authorization and fine grained access control support.

      This JIRA is created to add Kerberos and delegation token support to ADLS client to fetch Azure Storage SAS keys, which provides fine grained timed access to containers and blobs.
      For delegation token management, the proposal is it use the same REST service which being used to generate the SAS Keys.

      Attachments

        Issue Links

          is a clone of

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-13945 Azure: Add Kerberos and Delegation token support to WASB client.

          • Major - Major loss of function.
          • Resolved
          relates to

          Sub-task - The sub-task of the issue HADOOP-14565 Azure: Add Authorization support to ADLS

          • Major - Major loss of function.
          • Patch Available

          Activity

            People

              snayak Santhosh G Nayak
              ankothap Anandsagar Kothapalli
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: