You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-dev@hadoop.apache.org by "Alejandro Abdelnur (JIRA)" <ji...@apache.org> on 2012/05/31 19:46:22 UTC

[jira] [Created] (HADOOP-8458) Add management hook to AuthenticationHandler to enable delegation token operations support

Alejandro Abdelnur created HADOOP-8458:
------------------------------------------

             Summary: Add management hook to AuthenticationHandler to enable delegation token operations support
                 Key: HADOOP-8458
                 URL: https://issues.apache.org/jira/browse/HADOOP-8458
             Project: Hadoop Common
          Issue Type: New Feature
          Components: security
    Affects Versions: 2.0.1-alpha
            Reporter: Alejandro Abdelnur
            Assignee: Alejandro Abdelnur
             Fix For: 2.0.1-alpha


Currently hadoop-auth AuthenticationHandler only authenticates a request.

While it can easily be extended to authenticate delegation tokens, it cannot handle the delegation token get/renew/cancel operations.

The motivation of this new feature is that the above delegation token operations should be handled by a security component (hadoop-auth) instead of a functional component (httpfs implementation). Ideally we should have a complete separation of concerns between delegation token management and FileSystem/MapReduce/YARN API, but we don't. This change is a step on that directory for HTTP based services (like HttpFS).

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira