Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-12188

DoAs does not work properly in non-kerberos secured HS2

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.3.0, 2.0.0
    • Component/s: Security
    • Labels:
      None

      Description

      The case with following settings is valid but it seems still not work correctly in current HS2
      ==
      hive.server2.authentication=NONE (or LDAP)
      hive.server2.enable.doAs= true
      hive.metastore.sasl.enabled=true (with HMS Kerberos enabled)
      ==
      Currently HS2 is able to fetch the delegation token to a kerberos secured HMS only when itself is also kerberos secured.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                ctang Chaoyu Tang
                Reporter:
                ctang Chaoyu Tang
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: