Uploaded image for project: 'Hadoop HDFS'
  1. Hadoop HDFS
  2. HDFS-1023

Allow http server to start as regular principal if https principal not defined.

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 0.22.0
    • Fix Version/s: 0.22.0
    • Component/s: namenode
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      Currently limitations in Sun's KerbSSL implementation require the https server to be run as "host/[machine]@realm." and another Sun KerbSSL limitation appears to require you to store all principals in the same keytab, meaning fully functional, secured Namenodes require combined keytabs. However, it may be that one wishes to run a namenode without a secondary namenode or other utilities that require https. In this case, we should allow the http server to start and log a warning that it will not be able to accept https connections.

        Attachments

        1. HADOOP-1023-Y20-1.patch
          2 kB
          Jakob Homan
        2. HDFS-1023-trunk.patch
          2 kB
          Jakob Homan
        3. HDFS-1023-Y20.patch
          2 kB
          Jakob Homan
        4. HDFS-1023-Y20-Update.patch
          0.8 kB
          Jakob Homan
        5. HDFS-1023-Y20-Update-2.patch
          2 kB
          Jakob Homan

          Activity

            People

            • Assignee:
              jghoman Jakob Homan
              Reporter:
              jghoman Jakob Homan
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: