You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Dushyanth (JIRA)" <ji...@apache.org> on 2016/12/21 19:38:58 UTC

[jira] [Created] (HADOOP-13930) Azure: Add Authorization support to WASB

Dushyanth created HADOOP-13930:
----------------------------------

             Summary: Azure: Add Authorization support to WASB
                 Key: HADOOP-13930
                 URL: https://issues.apache.org/jira/browse/HADOOP-13930
             Project: Hadoop Common
          Issue Type: Improvement
          Components: azure, fs/azure
    Affects Versions: 2.8.0
            Reporter: Dushyanth
            Assignee: Dushyanth


As highlighted in HADOOP-13863, current implementation of WASB does not support authorization to any File System operations. This jira is created to add authorization support for WASB. The current approach is to enforce authorization via an external REST service (One approach could be to use component like Ranger to enforce authorization).  The support for authorization would be hiding behind a configuration flag : "fs.azure.enable.authorization" and the remote service is expected to be provided via config : "fs.azure.remote.auth.service.url".

The remote service is expected to provide support for the following REST call:  {URL}/CHECK_AUTHORIZATION```

 An example request:
{URL}/CHECK_AUTHORIZATION?wasb_absolute_path=<absolute_path>&operation_type=<operation type>&delegation_token=<delegation token>





--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org