[HADOOP-16454] Document how to share delegation tokens between multiple HttpFS servers - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: documentation, httpfs
Labels:
None
Environment:

Kerberized, clients connect to multiple HttpFS servers via load balancer

Description

In our environment, multiple HttpFS servers are deployed for the clients outside the HDFS cluster. As we are using external load balancer service for the HttpFS servers, the following situation may happen:

1. A client authenticates with a HttpFS server and gets a delegation token. Using the delegation token, the client can access to the NameNode.
2. In the next session, the client authenticates with another HttpFS server (via load balancer) using the same delegation token. The client fails to access because the other HttpFS server does not have the information of the delegation token.

This issue is to document how to fix this situation.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Akira Ajisaka

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 24/Jul/19 04:06

Updated:: 18/Mar/20 04:10