You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Benoy Antony (JIRA)" <ji...@apache.org> on 2015/06/01 23:46:17 UTC

[jira] [Created] (HADOOP-12049) Control http authentication cookie persistence via configuration

Benoy Antony created HADOOP-12049:
-------------------------------------

             Summary: Control http authentication cookie persistence via configuration
                 Key: HADOOP-12049
                 URL: https://issues.apache.org/jira/browse/HADOOP-12049
             Project: Hadoop Common
          Issue Type: Improvement
          Components: security
            Reporter: Benoy Antony
            Assignee: Benoy Antony


During http authentication, a cookie is dropped. This is a persistent cookie. The cookie is valid across browser sessions.
For clusters which require enhanced security,  it is desirable to have a session cookie so that cookie gets deleted when the user closes browser session.

It should be possible to specify cookie persistence (session or persistent) via configuration 




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)