Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-4632

Replacing _HOST in RM_PRINCIPAL should not be the responsibility of the client code

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Critical
    • Resolution: Won't Fix
    • Affects Version/s: 2.7.1
    • Fix Version/s: None
    • Component/s: api, resourcemanager
    • Labels:
      None

      Description

      It is currently the client's responsibility to call SecurityUtil.getServerPrincipal() to replace the _HOST placeholder in any principal name used for a delegation token. This is a non-optional operation and should not be pushed onto the client.

      All client apps that followed the distributed shell as the canonical example failed to do the replacement because distributed shell fails to do the replacement. (See YARN-4629.) Rather than fixing the whole world, since the whole world use distributed shell as a model, let's move the operation into YARN where it belongs.

        Attachments

          Activity

            People

            • Assignee:
              templedf Daniel Templeton
              Reporter:
              templedf Daniel Templeton
            • Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: