You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@spark.apache.org by "Thincrs (JIRA)" <ji...@apache.org> on 2018/11/30 20:19:00 UTC
[jira] [Commented] (SPARK-26239) Add configurable auth secret
source in k8s backend
[ https://issues.apache.org/jira/browse/SPARK-26239?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16705236#comment-16705236 ]
Thincrs commented on SPARK-26239:
---------------------------------
A user of thincrs has selected this issue. Deadline: Fri, Dec 7, 2018 8:18 PM
> Add configurable auth secret source in k8s backend
> --------------------------------------------------
>
> Key: SPARK-26239
> URL: https://issues.apache.org/jira/browse/SPARK-26239
> Project: Spark
> Issue Type: New Feature
> Components: Kubernetes
> Affects Versions: 3.0.0
> Reporter: Marcelo Vanzin
> Priority: Major
>
> This is a follow up to SPARK-26194, which aims to add auto-generated secrets similar to the YARN backend.
> There's a desire to support different ways to generate and propagate these auth secrets (e.g. using things like Vault). Need to investigate:
> - exposing configuration to support that
> - changing SecurityManager so that it can delegate some of the secret-handling logic to custom implementations
> - figuring out whether this can also be used in client-mode, where the driver is not created by the k8s backend in Spark.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org