[KUDU-2013] Long lived auth tokens in Java client - ASF JIRA

Details

Type: Task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.3.0
Fix Version/s: 1.5.0
Component/s: client, java, security
Labels:
None

Code Review:
https://gerrit.cloudera.org/#/c/7250/

Description

From security.adoc:

Kudu clients do not automatically request fresh tokens after initial token expiration, so long-lived clients in secure clusters are not supported.

A process to refresh tokens about to expire would enable the use of long-lived clients with secure clusters.

NOTE: It's possible to get a new token only when primary user credentials are available. In case if a client is created using imported authenticaion_credentials (i.e. using AsyncKuduClient.importAuthenticationCredentials()), re-acquiring a new token is not possible by design.

Issue Links

blocks

KUDU-2012 Kudu Flume sink authn support

Open

relates to

KUDU-2018 Kudu C++ client: re-acquire a new authn token when current one expires

Resolved

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Todd Lipcon added a comment - 15/May/17 21:54

Alexey's already working on this

Show

Todd Lipcon added a comment - 15/May/17 21:54 Alexey's already working on this

Hide

Permalink

Alexey Serbin added a comment - 12/Jul/17 21:51

Implemented with 603c1578c78c0377ffafdd9c427ebfd8a206bda3

Show

Alexey Serbin added a comment - 12/Jul/17 21:51 Implemented with 603c1578c78c0377ffafdd9c427ebfd8a206bda3

People

Assignee:

Alexey Serbin

Reporter:

Mike Percy

Votes:

0 Vote for this issue

Watchers:

6 Start watching this issue

Dates

Created:

15/May/17 21:47

Updated:

12/Jul/17 21:51

Resolved:

12/Jul/17 21:51

Development

Agile

View on Board