[HBASE-7357] HBaseClient and HBaseServer should use hbase.security.authentication when negotiating authentication - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.94.4, 0.95.0
Component/s: security
Labels:
None

Hadoop Flags:

Incompatible change, Reviewed
Release Note:

Hide
This is a slightly incompatible change.
HBase SASL connection negotiation is now enabled by setting hbase.security.authentication rather than hadoop.security.authentication.

Show
This is a slightly incompatible change. HBase SASL connection negotiation is now enabled by setting hbase.security.authentication rather than hadoop.security.authentication.

Description

This came up in the context of testing ~~HBASE-6788~~. Currently HBaseClient and HBaseServer call UserGroupInformation.isSecurityEnabled() when determining whether or not to use SASL to negotiate connections. This means they are using the hadoop.security.authentication configuration value. Since this is in the context of HBase RPC connections, it seems more correct to use the hbase.security.authentication configuration value by calling User.isHBaseSecurityEnabled().

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HBASE-7357.patch
14/Dec/12 22:14
4 kB
Gary Helmling
HBASE-7357_0.94.patch
15/Dec/12 04:53
3 kB
Gary Helmling
HBASE-7357_0.94_2.patch
18/Dec/12 19:37
3 kB
Gary Helmling

Issue Links

is depended upon by

HBASE-6788 Convert AuthenticationProtocol to protocol buffer service

Closed

is related to

HBASE-7394 Document security config requirements from HBASE-7357

Closed

Activity

People

Assignee:: Gary Helmling

Reporter:: Gary Helmling

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 14/Dec/12 21:25

Updated:: 09/Jun/14 04:01

Resolved:: 19/Dec/12 18:42