Uploaded image for project: 'Zeppelin'
  1. Zeppelin
  2. ZEPPELIN-1730

impersonate spark interpreter using --proxy-user

    XMLWordPrintableJSON

Details

    Description

      Cloudera's Hue is using proxy authentication quite successfully
      in our organization. I.e. Hue does LDAP authentication, and then impersonates to that specific user and all requests are made on behalf of that user (although `hue` is actual OS user that runs Hue service). Other Hadoop services are just configured to trust user `hue` to impersonate to other users.

      It might be easier to implement Spark's multitenancy support through spark-submit's --proxy-user parameter.

      (this is applicable to kerberized and non-kerberized environments)
      See comments in
      https://github.com/apache/spark/pull/4405
      and https://issues.apache.org/jira/browse/SPARK-5493 (resolved in Spark 1.3)

      Attachments

        Issue Links

          is duplicated by

          Sub-task - The sub-task of the issue ZEPPELIN-1587 SparkInterpreter impersonation routine is absent

          • Major - Major loss of function.
          • Resolved
          relates to

          Sub-task - The sub-task of the issue ZEPPELIN-1340 Impersonation for interpreter

          • Major - Major loss of function.
          • Open

          Sub-task - The sub-task of the issue ZEPPELIN-1320 Run zeppelin interpreter process as web front end user

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue ZEPPELIN-1587 SparkInterpreter impersonation routine is absent

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. ZEPPELIN-1701 User impersonation of front end user does not work with SPARK_HOME set.

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. SPARK-14743 Improve delegation token handling in secure clusters

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. SPARK-19143 API in Spark for distributing new delegation tokens (Improve delegation token handling in secure clusters)

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #1840

          Activity

            People

              khalidhuseynov Khalid Huseynov
              Tagar Ruslan Dautkhanov
              Votes:
              1 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: