Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-17345

Work with externally managed user credentials

Add voteVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Task
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: security
    • Labels:
      None

      Description

      We don't have a good test coverage for externally managed user credentials. It's not clear how someone could ingest kerberos credentials or delegation tokens that are externally managed. It's not clear what services/file system implementation supports them.

      File this Jira to track all relevant fixes/support/test/doc

      1.  what is supported.
      2.  test coverage
      3.  document for best practices (how to do it right) 

        Attachments

        Issue Links

        relates to

        Bug - A problem which impairs or prevents the functions of the product. HADOOP-13805 UGI.getCurrentUser() fails if user does not have a keytab associated

        • Major - Major loss of function.
        • Resolved

        Bug - A problem which impairs or prevents the functions of the product. HDFS-15545 (S)Webhdfs will not use updated delegation tokens available in the ugi after the old ones expire

        • Major - Major loss of function.
        • Resolved

          Activity
          $i18n.getText('security.level.explanation', $currentSelection) Viewable by All Users
          Cancel

            People

            • Assignee:
              Unassigned
              Reporter:
              weichiu Wei-Chiu Chuang

              Dates

              • Created:
                Updated:

                Issue deployment