You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@flink.apache.org by "Rong Rong (Jira)" <ji...@apache.org> on 2020/02/22 00:12:00 UTC
[jira] [Resolved] (FLINK-15561) Improve Kerberos delegation token
login
[ https://issues.apache.org/jira/browse/FLINK-15561?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Rong Rong resolved FLINK-15561.
-------------------------------
Resolution: Fixed
> Improve Kerberos delegation token login
> ----------------------------------------
>
> Key: FLINK-15561
> URL: https://issues.apache.org/jira/browse/FLINK-15561
> Project: Flink
> Issue Type: Sub-task
> Components: Deployment / YARN
> Reporter: Rong Rong
> Assignee: Rong Rong
> Priority: Major
> Labels: pull-request-available, usability
> Fix For: 1.10.1, 1.11.0
>
> Time Spent: 20m
> Remaining Estimate: 0h
>
> Inspired by the discussion in [http://apache-flink-user-mailing-list-archive.2336050.n4.nabble.com/Yarn-Kerberos-issue-td31894.html#a31933]
>
> Currently the security HadoopModule handles delegation token login utilizes 2 different code path.
> Flink needs to to ensure delegation token is also a valid format of credential when launching YARN context. See [1] [https://github.com/apache/flink/blob/master/flink-yarn/src/main/java/org/apache/flink/yarn/YarnClusterDescriptor.java#L484] and [2] [https://github.com/apache/flink/blob/master/flink-runtime/src/main/java/org/apache/flink/runtime/security/modules/HadoopModule.java#L146]
--
This message was sent by Atlassian Jira
(v8.3.4#803005)