You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@hive.apache.org by "Hari Sekhon (JIRA)" <ji...@apache.org> on 2014/12/17 15:38:13 UTC
[jira] [Created] (HIVE-9144) Beeline + Kerberos shouldn't prompt
for unused username + password
Hari Sekhon created HIVE-9144:
---------------------------------
Summary: Beeline + Kerberos shouldn't prompt for unused username + password
Key: HIVE-9144
URL: https://issues.apache.org/jira/browse/HIVE-9144
Project: Hive
Issue Type: Bug
Components: Beeline
Affects Versions: 0.13.0
Environment: Hive 0.13 on MapR 4.0.1
Reporter: Hari Sekhon
Priority: Minor
When using beeline to connect to a kerberized HiveServer2 it still prompts for a username and password that aren't used. It should be changed to not prompt when using Kerberos:
{code}/opt/mapr/hive/hive-0.13/bin/beeline
Beeline version 0.13.0-mapr-1409 by Apache Hive
beeline> !connect jdbc:hive2://<host>:10000/default;principal=hive/<host>@REALM
scan complete in 6ms
Connecting to jdbc:hive2://<host>:10000/default;principal=hive/<host>@REALM
Enter username for jdbc:hive2://lonsl1101975.uk.net.intra:10000/default;principal=hive/<host>@REALM: wronguser
Enter password for jdbc:hive2://<host>:10000/default;principal=hive/<host>@REALM: <enter>
Connected to: Apache Hive (version 0.13.0-mapr-1409)
Driver: Hive JDBC (version 0.13.0-mapr-1409)
Transaction isolation: TRANSACTION_REPEATABLE_READ
{code}
Hive conf includes (as concisely shown by set):
{code}hive.server2.authentication = KERBEROS
hive.server2.enable.doAs = true
hive.server2.enable.impersonation = true
{code}
I can't see how to demonstrate in HQL session that I am not connected as "wronguser" (which obviously doesn't exist either locally or as a Kerberos principal or account in my LDAP directory), so I've raised another ticket for that HIVE-9143, but it should be clear given I specifed a non-existent user and a completely blank password just hitting enter that it's not using those credentials. Same happens with <enter>, <enter> for both username and password.
Regards,
Hari Sekhon
http://www.linkedin.com/in/harisekhon
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)