Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-1935 Security for timeline server
  3. YARN-2228

TimelineServer should load pseudo authentication filter when authentication = simple

VotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 2.6.0
    • None
    • None
    • Reviewed

    Description

      When kerberos authentication is not enabled, we should let the timeline server to work with pseudo authentication filter. In this way, the sever is able to detect the request user by checking "user.name".

      On the other hand, timeline client should append "user.name" in un-secure case as well, such that ACLs can keep working in this case.

      Attachments

        1. YARN-2228.6.patch
          33 kB
          Zhijie Shen
        2. YARN-2228.5.patch
          33 kB
          Zhijie Shen
        3. YARN-2228.4.patch
          28 kB
          Zhijie Shen
        4. YARN-2228.3.patch
          27 kB
          Zhijie Shen
        5. YARN-2228.2.patch
          27 kB
          Zhijie Shen
        6. YARN-2228.1.patch
          27 kB
          Zhijie Shen

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            zjshen Zhijie Shen
            zjshen Zhijie Shen
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment