Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-5355 YARN Timeline Service v.2: alpha 2
  3. YARN-3053

[Security] Review and implement authentication in ATS v.2

    XMLWordPrintableJSON

    Details

    • Target Version/s:
    • Hadoop Flags:
      Reviewed

      Description

      Per design in YARN-2928, we want to evaluate and review the system for security, and ensure proper security in the system.

      This includes proper authentication, token management, access control, and any other relevant security aspects.

        Attachments

        1. ATSv2Authentication.v01.pdf
          527 kB
          Varun Saxena
        2. ATSv2Authentication.v02.pdf
          173 kB
          Varun Saxena
        3. ATSv2Authentication(draft).pdf
          252 kB
          Varun Saxena

          Issue Links

          incorporates

          Sub-task - The sub-task of the issue MAPREDUCE-6838 [ATSv2 Security] Add timeline delegation token received in allocate response to UGI

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue YARN-5647 [ATSv2 Security] Collector side changes for loading auth filters and principals

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue YARN-5648 [ATSv2 Security] Client side changes for authentication

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue YARN-6130 [ATSv2 Security] Generate a delegation token for AM when app collector is created and pass it to AM via NM and RM

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue YARN-6133 [ATSv2 Security] Renew delegation token for app automatically if an app collector is active

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue YARN-6134 [ATSv2 Security] Regenerate delegation token for app just before token expires if app collector is active

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue YARN-7006 [ATSv2 Security] Changes for authentication for CollectorNodemanagerProtocol

          • Major - Major loss of function.
          • Resolved
          is a child of

          Sub-task - The sub-task of the issue YARN-6638 [ATSv2 Security] Timeline reader side changes for loading auth filters and principals

          • Major - Major loss of function.
          • Resolved
          is duplicated by

          Sub-task - The sub-task of the issue YARN-3402 Security support for new timeline service.

          • Major - Major loss of function.
          • Resolved
          is related to

          Sub-task - The sub-task of the issue YARN-3401 [Security] users should not be able to create a generic TimelineEntity and associate arbitrary type

          • Major - Major loss of function.
          • Open
          Parent Feature

          Sub-task - The sub-task of the issue YARN-6699 [ATSv2 Security] Delegation token support for Timeline reader

          • Major - Major loss of function.
          • Open

            Activity

              People

              • Assignee:
                varun_saxena Varun Saxena
                Reporter:
                sjlee0 Sangjin Lee
              • Votes:
                0 Vote for this issue
                Watchers:
                18 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: