[HDFS-3983] Hftp should support both SPNEGO and KSSL - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Blocker
Resolution: Won't Fix
Affects Version/s: 2.0.0-alpha
Fix Version/s: None
Component/s: security
Labels:
None

Description

Hftp currently doesn't work against a secure cluster unless you configure dfs.https.port to be the http port, otherwise the client can't fetch tokens:

$ hadoop fs -ls hftp://c1225.hal.cloudera.com:50070/
12/09/26 18:02:00 INFO fs.FileSystem: Couldn't get a delegation token from http://c1225.hal.cloudera.com:50470 using http.
ls: Security enabled but user not authenticated by filter

This is due to Hftp still using the https port. Post ~~HDFS-2617~~ it should use the regular http port. Hsftp should still use the secure port, however now that we have ~~HADOOP-8581~~ it's worth considering removing Hsftp entirely. I'll start a separate thread about that.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

hdfs-3983.txt
27/Sep/12 05:46
12 kB
Eli Collins
hdfs-3983.txt
27/Sep/12 04:17
10 kB
Eli Collins

Issue Links

is related to

HDFS-3987 Support webhdfs over HTTPS

Closed

HDFS-3461 HFTP should use the same port & protocol for getting the delegation token

Closed

relates to

HDFS-3989 Remove duplicate Http server SSL code

Open

Activity

People

Assignee:: Unassigned

Reporter:: Eli Collins

Votes:: 0 Vote for this issue

Watchers:: 12 Start watching this issue

Dates

Created:: 27/Sep/12 04:00

Updated:: 01/Oct/13 15:11

Resolved:: 01/Oct/13 15:11