You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Steve Loughran (Jira)" <ji...@apache.org> on 2021/02/02 14:50:00 UTC

[jira] [Created] (HADOOP-17511) Add an Audit plugin point for S3A auditing/context

Steve Loughran created HADOOP-17511:
---------------------------------------

             Summary: Add an Audit plugin point for S3A auditing/context
                 Key: HADOOP-17511
                 URL: https://issues.apache.org/jira/browse/HADOOP-17511
             Project: Hadoop Common
          Issue Type: Sub-task
    Affects Versions: 3.3.1
            Reporter: Steve Loughran
            Assignee: Steve Loughran


Add a way for auditing tools to correlate S3 object calls with Hadoop FS API calls.

Initially just to log/forward to an auditing service.

Later: let us attach them as parameters in S3 requests, such as opentrace headeers or (my initial idea: http referrer header -where it will get into the log)

Challenges
* ensuring the audit span is created for every public entry point. That will have to include those used in s3guard tools, some defacto public APIs
* and not re-entered for active spans. s3A code must not call back into the FS API points
* Propagation across worker threads





--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org