[HADOOP-9698] RPCv9 client must honor server's SASL negotiate response - ASF JIRA

Voters

Watch issue

Watchers

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Closed
Priority: Blocker
Resolution: Fixed
Affects Version/s: 2.1.0-beta, 3.0.0-alpha1
Fix Version/s: 2.1.0-beta
Component/s: ipc
Labels:
None

Target Version/s:

2.1.0-beta
Hadoop Flags:

Incompatible change, Reviewed
Release Note:
The RPC client now waits for the Server's SASL negotiate response before instantiating its SASL client.

Description

As of ~~HADOOP-9421~~, a RPCv9 server will advertise its authentication methods. This is meant to support features such as IP failover, better token selection, and interoperability in a heterogenous security environment.

Currently the client ignores the negotiate response and just blindly attempts to authenticate instead of choosing a mutually agreeable auth method.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HADOOP-9698.patch
26/Jul/13 19:24
61 kB
Daryn Sharp
HADOOP-9698.patch
26/Jul/13 18:24
61 kB
Daryn Sharp
HADOOP-9698.patch
18/Jul/13 16:14
61 kB
Daryn Sharp
RPCv9 Authentication.pdf
26/Jul/13 18:28
66 kB
Daryn Sharp

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Daryn Sharp

Reporter:: Daryn Sharp

Votes:: 0 Vote for this issue

Watchers:: 12 Start watching this issue

Dates

Created:: 03/Jul/13 17:31

Updated:: 12/May/16 18:25

Resolved:: 29/Jul/13 14:55

Agile

View on Board

RPCv9 client must honor server's SASL negotiate response

Details

Description

Attachments

Attachments

Activity

People

Dates

Agile

Slack

Issue deployment