You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Kevin Minder (JIRA)" <ji...@apache.org> on 2013/07/02 21:31:21 UTC

[jira] [Resolved] (KNOX-27) Access Kerberos secured Hadoop cluster via gateway using basic auth credentials

     [ https://issues.apache.org/jira/browse/KNOX-27?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Kevin Minder resolved KNOX-27.
------------------------------

    Resolution: Fixed

Initially resolved by the following commit.  Fixes for KNOX-78 and KNOX-79 also required.
https://git-wip-us.apache.org/repos/asf?p=incubator-knox.git;a=commit;h=1ce6e367bbfa0f49eaee19bba19a5fe1b1bf3bdd
                
> Access Kerberos secured Hadoop cluster via gateway using basic auth credentials
> -------------------------------------------------------------------------------
>
>                 Key: KNOX-27
>                 URL: https://issues.apache.org/jira/browse/KNOX-27
>             Project: Apache Knox
>          Issue Type: New Feature
>          Components: Server
>            Reporter: Kevin Minder
>            Assignee: Dilli Arumugam
>         Attachments: KNOX-27.patch
>
>
> From BUG-4306
> The basic interactions flow might look like this.
> 1. Client requests HDFS resource via gateway
> 2. Gateway challenges with basic auth
> 3. Gateway authenticates with KDC and receives token
> 4. Gateway forwards original request to service
> 5. Service challenges with SPNEGO
> 6. Gateway provides token received from KDC
> 7. Service provides response including hadoop.auth cookie.  This prevents subsequent KDC and SPNEGO interactions.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira