You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@reef.apache.org by "Markus Weimer (JIRA)" <ji...@apache.org> on 2015/08/24 23:42:46 UTC
[jira] [Resolved] (REEF-604) Support Hadoop security tokens in YARN
runtime during job submission and container creation
[ https://issues.apache.org/jira/browse/REEF-604?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Markus Weimer resolved REEF-604.
--------------------------------
Resolution: Implemented
Fix Version/s: 0.13
Implemented via [#402|https://github.com/apache/incubator-reef/pull/402]
> Support Hadoop security tokens in YARN runtime during job submission and container creation
> -------------------------------------------------------------------------------------------
>
> Key: REEF-604
> URL: https://issues.apache.org/jira/browse/REEF-604
> Project: REEF
> Issue Type: Improvement
> Components: REEF Runtime YARN
> Reporter: Anupam
> Assignee: Anupam
> Fix For: 0.13
>
>
> Hadoop uses delegation tokens ([#a], [#b]) for secure access to storage (and other components). When using REEF over YARN we need to propagate these tokens appropriately during job submission and container creation ([#c]).
> In order to do this, we need to:
> # Allow the user to express the intent to use tokens
> # Allow the user to provide tokens
> # Pass the token appropriately to YARN infrastructure
> {anchor:a} a: http://hortonworks.com/blog/the-role-of-delegation-tokens-in-apache-hadoop-security/
> {anchor:b} b: http://hadoop.apache.org/docs/r1.2.1/api/org/apache/hadoop/security/token/Token.html
> {anchor:c} c: http://hadoop.apache.org/docs/current/api/org/apache/hadoop/yarn/api/records/ContainerLaunchContext.html#setTokens(java.nio.ByteBuffer)
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)