[HDFS-3460] HttpFS proxyuser validation with Kerberos ON uses full principal name - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 2.0.0-alpha
Fix Version/s: 2.0.2-alpha
Component/s: None
Labels:
None

Target Version/s:
Hadoop Flags:

Reviewed

Description

The HttpFSServer.getEffectiveUser() method uses the principal name for proxy user verification. If the Kerberos is ON and the proxy user is a service principal (NAME/HOST) then the verification fails, instead the short name (just NAME) should be used.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDFS-3460.patch
23/May/12 23:40
2 kB
Alejandro Abdelnur

Activity

People

Assignee:: Alejandro Abdelnur

Reporter:: Alejandro Abdelnur

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 23/May/12 21:05

Updated:: 11/Oct/12 17:46

Resolved:: 24/May/12 21:25