You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues-all@impala.apache.org by "Thomas Tauber-Marshall (Jira)" <ji...@apache.org> on 2020/02/25 20:25:00 UTC

[jira] [Created] (IMPALA-9423) Fix cookie auth with Knox

Thomas Tauber-Marshall created IMPALA-9423:
----------------------------------------------

             Summary: Fix cookie auth with Knox
                 Key: IMPALA-9423
                 URL: https://issues.apache.org/jira/browse/IMPALA-9423
             Project: IMPALA
          Issue Type: Bug
          Components: Clients
            Reporter: Thomas Tauber-Marshall
            Assignee: Thomas Tauber-Marshall


When Apache Knox is being used to proxy connections to Impala, it used to be the case that Knox would return the authentication cookies generated by Impala, saving extra round trips and authentications to Kerberos/LDAP.

This was broken by KNOX-2223 - Knox only returns auth cookies that it thinks are for it, which it determines by checking for its Kerberos principal in the cookie string. With KNOX-2223, the principal is expected to be preceded by a '=', which Impala doesn't do.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-all-unsubscribe@impala.apache.org
For additional commands, e-mail: issues-all-help@impala.apache.org