You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@reef.apache.org by "Anupam (JIRA)" <ji...@apache.org> on 2015/08/19 00:35:45 UTC

[jira] [Created] (REEF-604) Support Hadoop security tokens in YARN runtime during job submission and container creation

Anupam created REEF-604:
---------------------------

             Summary: Support Hadoop security tokens in YARN runtime during job submission and container creation
                 Key: REEF-604
                 URL: https://issues.apache.org/jira/browse/REEF-604
             Project: REEF
          Issue Type: Improvement
          Components: REEF Runtime YARN
            Reporter: Anupam


Hadoop uses delegation tokens ([#a], [#b]) for secure access to storage (and other components). When using REEF over YARN we need to propagate these tokens appropriately during job submission and container creation ([#c]).
In order to do this, we need to:
# Allow the user to express the intent to use tokens
# Allow the user to provide tokens
# Pass the token appropriately to YARN infrastructure

{anchor:a} a: http://hortonworks.com/blog/the-role-of-delegation-tokens-in-apache-hadoop-security/
{anchor:b} b:  http://hadoop.apache.org/docs/r1.2.1/api/org/apache/hadoop/security/token/Token.html
{anchor:c} c: http://hadoop.apache.org/docs/current/api/org/apache/hadoop/yarn/api/records/ContainerLaunchContext.html#setTokens(java.nio.ByteBuffer)



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)