Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-8458

Add management hook to AuthenticationHandler to enable delegation token operations support

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0-alpha
    • Fix Version/s: 2.0.2-alpha
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Incompatible change, Reviewed

      Description

      Currently hadoop-auth AuthenticationHandler only authenticates a request.

      While it can easily be extended to authenticate delegation tokens, it cannot handle the delegation token get/renew/cancel operations.

      The motivation of this new feature is that the above delegation token operations should be handled by a security component (hadoop-auth) instead of a functional component (httpfs implementation). Ideally we should have a complete separation of concerns between delegation token management and FileSystem/MapReduce/YARN API, but we don't. This change is a step on that directory for HTTP based services (like HttpFS).

        Attachments

        1. HADOOP-8458.patch
          23 kB
          Alejandro Abdelnur
        2. HADOOP-8458.patch
          22 kB
          Alejandro Abdelnur

          Issue Links

            Activity

              People

              • Assignee:
                tucu00 Alejandro Abdelnur
                Reporter:
                tucu00 Alejandro Abdelnur
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: