Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-1935 Security for timeline server
  3. YARN-2228

TimelineServer should load pseudo authentication filter when authentication = simple

    XMLWordPrintableJSON

    Details

    • Type: Sub-task
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.6.0
    • Component/s: None
    • Labels:
      None
    • Target Version/s:
    • Hadoop Flags:
      Reviewed

      Description

      When kerberos authentication is not enabled, we should let the timeline server to work with pseudo authentication filter. In this way, the sever is able to detect the request user by checking "user.name".

      On the other hand, timeline client should append "user.name" in un-secure case as well, such that ACLs can keep working in this case.

        Attachments

        1. YARN-2228.6.patch
          33 kB
          Zhijie Shen
        2. YARN-2228.5.patch
          33 kB
          Zhijie Shen
        3. YARN-2228.4.patch
          28 kB
          Zhijie Shen
        4. YARN-2228.3.patch
          27 kB
          Zhijie Shen
        5. YARN-2228.2.patch
          27 kB
          Zhijie Shen
        6. YARN-2228.1.patch
          27 kB
          Zhijie Shen

          Activity

            People

            • Assignee:
              zjshen Zhijie Shen
              Reporter:
              zjshen Zhijie Shen
            • Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: