[HDFS-1023] Allow http server to start as regular principal if https principal not defined. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 0.22.0
Fix Version/s: 0.22.0
Component/s: namenode
Labels:
None

Hadoop Flags:

Reviewed

Description

Currently limitations in Sun's KerbSSL implementation require the https server to be run as "host/[machine]@realm." and another Sun KerbSSL limitation appears to require you to store all principals in the same keytab, meaning fully functional, secured Namenodes require combined keytabs. However, it may be that one wishes to run a namenode without a secondary namenode or other utilities that require https. In this case, we should allow the http server to start and log a warning that it will not be able to accept https connections.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDFS-1023-Y20.patch
05/Mar/10 01:30
2 kB
Jakob Homan
HADOOP-1023-Y20-1.patch
05/Mar/10 03:04
2 kB
Jakob Homan
HDFS-1023-Y20-Update.patch
06/Mar/10 00:39
0.8 kB
Jakob Homan
HDFS-1023-Y20-Update-2.patch
09/Mar/10 00:32
2 kB
Jakob Homan
HDFS-1023-trunk.patch
09/Jul/10 20:32
2 kB
Jakob Homan

Activity

People

Assignee:: Jakob Homan

Reporter:: Jakob Homan

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 05/Mar/10 01:22

Updated:: 12/Dec/11 06:19

Resolved:: 10/Jul/10 19:47