You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Dushyanth (JIRA)" <ji...@apache.org> on 2016/12/21 19:38:58 UTC
[jira] [Created] (HADOOP-13930) Azure: Add Authorization support to
WASB
Dushyanth created HADOOP-13930:
----------------------------------
Summary: Azure: Add Authorization support to WASB
Key: HADOOP-13930
URL: https://issues.apache.org/jira/browse/HADOOP-13930
Project: Hadoop Common
Issue Type: Improvement
Components: azure, fs/azure
Affects Versions: 2.8.0
Reporter: Dushyanth
Assignee: Dushyanth
As highlighted in HADOOP-13863, current implementation of WASB does not support authorization to any File System operations. This jira is created to add authorization support for WASB. The current approach is to enforce authorization via an external REST service (One approach could be to use component like Ranger to enforce authorization). The support for authorization would be hiding behind a configuration flag : "fs.azure.enable.authorization" and the remote service is expected to be provided via config : "fs.azure.remote.auth.service.url".
The remote service is expected to provide support for the following REST call: {URL}/CHECK_AUTHORIZATION```
An example request:
{URL}/CHECK_AUTHORIZATION?wasb_absolute_path=<absolute_path>&operation_type=<operation type>&delegation_token=<delegation token>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org