You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hive.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2020/06/04 21:35:00 UTC

[jira] [Work logged] (HIVE-13418) HiveServer2 HTTP mode should support X-Forwarded-Host header for authorization/audits

     [ https://issues.apache.org/jira/browse/HIVE-13418?focusedWorklogId=441535&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-441535 ]

ASF GitHub Bot logged work on HIVE-13418:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 04/Jun/20 21:34
            Start Date: 04/Jun/20 21:34
    Worklog Time Spent: 10m 
      Work Description: belugabehr commented on pull request #69:
URL: https://github.com/apache/hive/pull/69#issuecomment-639131702


   This has already been resolved through the manual patch process.
   
   https://issues.apache.org/jira/browse/HIVE-13418


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


Issue Time Tracking
-------------------

            Worklog Id:     (was: 441535)
    Remaining Estimate: 0h
            Time Spent: 10m

> HiveServer2 HTTP mode should support X-Forwarded-Host header for authorization/audits
> -------------------------------------------------------------------------------------
>
>                 Key: HIVE-13418
>                 URL: https://issues.apache.org/jira/browse/HIVE-13418
>             Project: Hive
>          Issue Type: New Feature
>          Components: Authorization, HiveServer2
>            Reporter: Thejas Nair
>            Assignee: Thejas Nair
>            Priority: Major
>             Fix For: 2.1.0
>
>         Attachments: HIVE-13418.1.patch
>
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> Apache Knox acts as a proxy for requests coming from the end users. In these cases, the IP address that HiveServer2 passes to the authorization/audit plugins via the HiveAuthzContext object only the IP address of the proxy, and not the end user.
> For auditing purposes, the IP address of the end user and any proxies in between are useful.
> HiveServer2 should pass the information from  'X-Forwarded-Host' header to the HiveAuthorizer plugins.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)