Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-4670

Authentication module should pass the instance part of the Kerberos principle

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Won't Fix
    • 0.11.0
    • None
    • Authentication, HiveServer2
    • None

    Description

      When Kerberos authentication is enabled for HiveServer2, the thrift SASL layer passes instance@realm from the principal. It should instead strip the realm and pass just the instance part of the principal.

      Attachments

        1. HIVE-4670.2.patch
          6 kB
          Shreepadma Venugopalan
        2. HIVE-4670.3.patch
          5 kB
          Shreepadma Venugopalan

        Issue Links

          blocks

          Improvement - An improvement or enhancement to an existing feature or task. SENTRY-67 Complete Hive Integration points

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Activity

            People

              shreepadma Shreepadma Venugopalan
              shreepadma Shreepadma Venugopalan
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: