You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Kannan Rajah (JIRA)" <ji...@apache.org> on 2014/11/17 23:34:35 UTC
[jira] [Resolved] (HADOOP-11310) Load AuthenticationFilter config
params from core-site.xml
[ https://issues.apache.org/jira/browse/HADOOP-11310?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Kannan Rajah resolved HADOOP-11310.
-----------------------------------
Resolution: Implemented
> Load AuthenticationFilter config params from core-site.xml
> ----------------------------------------------------------
>
> Key: HADOOP-11310
> URL: https://issues.apache.org/jira/browse/HADOOP-11310
> Project: Hadoop Common
> Issue Type: Improvement
> Components: security
> Affects Versions: 2.5.1
> Reporter: Kannan Rajah
> Assignee: Kannan Rajah
> Priority: Minor
>
> AuthenticationFilter exposes several configuration params such as
> AuthenticationFilter#AUTH_TOKEN_VALIDITY. Normally these params go into web.xml. The limitation of this approach is that each webserver (RM/NM/HBase) has to configure these params separately in the corresponding web.xml files.
> To address this use case, we can create a new class called HadoopCoreAuthenticationFilter that extends AuthenticationFilter and overrides the getConfiguration method to get the config params from core-site.xml as well. All the webservers that depend on hadoop core automatically get a single config defined in core-site.xml.
> The config in core-site.xml looks like this:
> <property>
> <name>hadoop.http.authentication.signature.secret</name>
> <value>13048203948239</value>
> </property>
> <property>
> <name>hadoop.http.authentication.token.validity</name>
> <value>48</value>
> </property>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)