Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
Description
As per Apache Spark documentation :
The property spark.yarn.security.tokens.service.enabled in Apache Spark which controls whether to retrieve delegation tokens for non-HDFS services when security is enabled. By default, delegation tokens for all supported services are retrieved when those services are configured, but it's possible to disable that behavior if it somehow conflicts with the application being run.
Currently supported services are: hive, hbase
It would be good to have default as spark.yarn.security.tokens.hive.enabled=false to avoid having Spark redundantly retry obtaining a token when it already has one (passed originally from Oozie's hcat credentials).