-
Type:
Task
-
Status: Open
-
Priority:
Major
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Component/s: security
-
Labels:None
We don't have a good test coverage for externally managed user credentials. It's not clear how someone could ingest kerberos credentials or delegation tokens that are externally managed. It's not clear what services/file system implementation supports them.
File this Jira to track all relevant fixes/support/test/doc
- what is supported.
- test coverage
- document for best practices (how to do it right)
- relates to
-
HADOOP-13805 UGI.getCurrentUser() fails if user does not have a keytab associated
-
- Resolved
-
-
HDFS-15545 (S)Webhdfs will not use updated delegation tokens available in the ugi after the old ones expire
-
- Resolved
-