You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@falcon.apache.org by "Arpit Gupta (JIRA)" <ji...@apache.org> on 2014/11/13 00:09:34 UTC

[jira] [Updated] (FALCON-890) Merlin tests need to be updated in secure cluster to get the token using the ugi obect

     [ https://issues.apache.org/jira/browse/FALCON-890?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Arpit Gupta updated FALCON-890:
-------------------------------
    Attachment: FALCON-890.patch

Also we no longer need to kinit as the ugi is created from the keytab.

> Merlin tests need to be updated in secure cluster to get the token using the ugi obect
> --------------------------------------------------------------------------------------
>
>                 Key: FALCON-890
>                 URL: https://issues.apache.org/jira/browse/FALCON-890
>             Project: Falcon
>          Issue Type: Bug
>          Components: merlin
>    Affects Versions: 0.6
>            Reporter: Arpit Gupta
>            Assignee: Arpit Gupta
>            Priority: Blocker
>         Attachments: FALCON-890.patch
>
>
> Current merlin code does a kinit to get kerberos credentials before we get a authenticated token. However some jvm's continue to use the kerberos credentials that the java process started with instead of the latest kinit. Causing the token to be of a different user than intended. We have to wrap the call to get the token in a ugi.doAs



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)