You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "fang fang chen (JIRA)" <ji...@apache.org> on 2013/07/01 08:18:20 UTC
[jira] [Commented] (HADOOP-9679) KerberosName.rules are not
initialized during adding kerberos support to a web servlet using hadoop
authentications
[ https://issues.apache.org/jira/browse/HADOOP-9679?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13696603#comment-13696603 ]
fang fang chen commented on HADOOP-9679:
----------------------------------------
With hadoop-2.0.3, seems this issue can be avoided via setting kerberos.name.rules at server side. But this setting does not work at hadoop-1.1.1.
I think we should set KerberosName.rules with a default value during KerberosName(String Name) which is invoked at KerberosAuthenticationHandler.authenticate(HttpServletRequest request, final HttpServletResponse response) .
> KerberosName.rules are not initialized during adding kerberos support to a web servlet using hadoop authentications
> -------------------------------------------------------------------------------------------------------------------
>
> Key: HADOOP-9679
> URL: https://issues.apache.org/jira/browse/HADOOP-9679
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 1.1.2, 2.0.4-alpha
> Reporter: fang fang chen
>
> I am using hadoop-1.1.1 to add kerberos authentication to a web service. But found rules are not initialized, that makes following error happened:
> java.lang.NullPointerException
> at org.apache.hadoop.security.KerberosName.getShortName(KerberosName.java:384)
> at org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler$2.run(KerberosAuthenticationHandler.java:328)
> at org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler$2.run(KerberosAuthenticationHandler.java:302)
> at java.security.AccessController.doPrivileged(AccessController.java:310)
> at javax.security.auth.Subject.doAs(Subject.java:573)
> at org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler.authenticate(KerberosAuthenticationHandler.java:302)
> at org.apache.hadoop.security.authentication.server.AuthenticationFilter.doFilter(AuthenticationFilter.java:340)
> Seems in hadoop-2.0.3, this issue still is not fixed.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira