You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@reef.apache.org by "Markus Weimer (JIRA)" <ji...@apache.org> on 2015/08/24 23:42:46 UTC

[jira] [Resolved] (REEF-604) Support Hadoop security tokens in YARN runtime during job submission and container creation

     [ https://issues.apache.org/jira/browse/REEF-604?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Markus Weimer resolved REEF-604.
--------------------------------
       Resolution: Implemented
    Fix Version/s: 0.13

Implemented via [#402|https://github.com/apache/incubator-reef/pull/402]

> Support Hadoop security tokens in YARN runtime during job submission and container creation
> -------------------------------------------------------------------------------------------
>
>                 Key: REEF-604
>                 URL: https://issues.apache.org/jira/browse/REEF-604
>             Project: REEF
>          Issue Type: Improvement
>          Components: REEF Runtime YARN
>            Reporter: Anupam
>            Assignee: Anupam
>             Fix For: 0.13
>
>
> Hadoop uses delegation tokens ([#a], [#b]) for secure access to storage (and other components). When using REEF over YARN we need to propagate these tokens appropriately during job submission and container creation ([#c]).
> In order to do this, we need to:
> # Allow the user to express the intent to use tokens
> # Allow the user to provide tokens
> # Pass the token appropriately to YARN infrastructure
> {anchor:a} a: http://hortonworks.com/blog/the-role-of-delegation-tokens-in-apache-hadoop-security/
> {anchor:b} b:  http://hadoop.apache.org/docs/r1.2.1/api/org/apache/hadoop/security/token/Token.html
> {anchor:c} c: http://hadoop.apache.org/docs/current/api/org/apache/hadoop/yarn/api/records/ContainerLaunchContext.html#setTokens(java.nio.ByteBuffer)



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)