Details

    • Type: Sub-task
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 2.8.0
    • Fix Version/s: None
    • Component/s: fs/adl
    • Labels:
      None
    • Target Version/s:

      Description

      Current implementation of Azure storage client for Hadoop (ADLS) does not support Kerberos Authentication and FileSystem authorization, which makes it unusable in secure environments with multi user setup.
      To make ADLS client more suitable to run in Secure environments, HADOOP-14565 is under way for providing the authorization and fine grained access control support.

      This JIRA is created to add Kerberos and delegation token support to ADLS client to fetch Azure Storage SAS keys, which provides fine grained timed access to containers and blobs.
      For delegation token management, the proposal is it use the same REST service which being used to generate the SAS Keys.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                snayak Santhosh G Nayak
                Reporter:
                ankothap Anandsagar Kothapalli
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated: