Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-2013

Long lived auth tokens in Java client

    XMLWordPrintableJSON

    Details

    • Type: Task
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.3.0
    • Fix Version/s: 1.5.0
    • Component/s: client, java, security
    • Labels:
      None

      Description

      From security.adoc:

      Kudu clients do not automatically request fresh tokens after initial token expiration, so long-lived clients in secure clusters are not supported.

      A process to refresh tokens about to expire would enable the use of long-lived clients with secure clusters.

      NOTE: It's possible to get a new token only when primary user credentials are available. In case if a client is created using imported authenticaion_credentials (i.e. using AsyncKuduClient.importAuthenticationCredentials()), re-acquiring a new token is not possible by design.

        Attachments

          Issue Links

          blocks

          Task - A task that needs to be done. KUDU-2012 Kudu Flume sink authn support

          • Major - Major loss of function.
          • Resolved
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. KUDU-2018 Kudu C++ client: re-acquire a new authn token when current one expires

          • Major - Major loss of function.
          • Resolved

            Activity

              People

              • Assignee:
                aserbin Alexey Serbin
                Reporter:
                mpercy Mike Percy
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: