Hadoop Common
  1. Hadoop Common
  2. HADOOP-8465

hadoop-auth should support ephemeral authentication

    Details

    • Type: New Feature New Feature
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0-alpha
    • Fix Version/s: 2.0.2-alpha
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      Currently, once a client is authenticated the generated authentication-token (& cookie) are valid for a given (service configurable) lifespan.

      Once the authentication-token (& cookie) is issued, the authentication logic will not be triggered until the authentication-token expires.

      This behavior does not work well with delegation tokens expected behavior where delegation tokens can be canceled at any time.

      Having ephemeral authentication (which is check on every request) would address this issue.

      1. HADOOP-8465.patch
        9 kB
        Alejandro Abdelnur
      2. HADOOP-8465.patch
        10 kB
        Alejandro Abdelnur

        Issue Links

          Activity

            People

            • Assignee:
              Alejandro Abdelnur
              Reporter:
              Alejandro Abdelnur
            • Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development