Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-2013

Long lived auth tokens in Java client

          Details

          • Type: Task
          • Status: Resolved
          • Priority: Major
          • Resolution: Fixed
          • Affects Version/s: 1.3.0
          • Fix Version/s: 1.5.0
          • Component/s: client, java, security
          • Labels:
            None

            Description

            From security.adoc:

            Kudu clients do not automatically request fresh tokens after initial token expiration, so long-lived clients in secure clusters are not supported.

            A process to refresh tokens about to expire would enable the use of long-lived clients with secure clusters.

            NOTE: It's possible to get a new token only when primary user credentials are available. In case if a client is created using imported authenticaion_credentials (i.e. using AsyncKuduClient.importAuthenticationCredentials()), re-acquiring a new token is not possible by design.

              Attachments

                Issue Links

                blocks

                Task - A task that needs to be done. KUDU-2012 Kudu Flume sink authn support

                • Major - Major loss of function.
                • Resolved
                relates to

                Improvement - An improvement or enhancement to an existing feature or task. KUDU-2018 Kudu C++ client: re-acquire a new authn token when current one expires

                • Major - Major loss of function.
                • Resolved

                  Activity

                    People

                    • Assignee:
                      aserbin Alexey Serbin
                      Reporter:
                      mpercy Mike Percy
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      6 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: