You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Steve Loughran (JIRA)" <ji...@apache.org> on 2018/10/17 13:20:00 UTC

[jira] [Deleted] (HADOOP-15863) ABFS to support a Delegation Token provider which marshalls current login secrets

     [ https://issues.apache.org/jira/browse/HADOOP-15863?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Steve Loughran deleted HADOOP-15863:
------------------------------------


> ABFS to support a Delegation Token provider which marshalls current login secrets
> ---------------------------------------------------------------------------------
>
>                 Key: HADOOP-15863
>                 URL: https://issues.apache.org/jira/browse/HADOOP-15863
>             Project: Hadoop Common
>          Issue Type: Sub-task
>            Reporter: Steve Loughran
>            Priority: Major
>
> ABFS has an extension point for generating delegation tokens, presumably the implementation is actually using Kerberos to generate some secrets to pass around.
> HADOOP-14556 shows how an object store can actually implement DTs which marshall full credentials over the wire to remote services, so allowing users to submit queries to shared clusters. This isn't as secure as kerberos, but does let users access their private data.
> (This JIRA is avoiding worrying about session & role auth, just taking the config options for login and marshalling as a DT)



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org