Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-8465

hadoop-auth should support ephemeral authentication

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0-alpha
    • Fix Version/s: 2.0.2-alpha
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      Currently, once a client is authenticated the generated authentication-token (& cookie) are valid for a given (service configurable) lifespan.

      Once the authentication-token (& cookie) is issued, the authentication logic will not be triggered until the authentication-token expires.

      This behavior does not work well with delegation tokens expected behavior where delegation tokens can be canceled at any time.

      Having ephemeral authentication (which is check on every request) would address this issue.

        Attachments

        1. HADOOP-8465.patch
          10 kB
          Alejandro Abdelnur
        2. HADOOP-8465.patch
          9 kB
          Alejandro Abdelnur

          Issue Links

            Activity

              People

              • Assignee:
                tucu00 Alejandro Abdelnur
                Reporter:
                tucu00 Alejandro Abdelnur
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: