You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Akira Ajisaka (Jira)" <ji...@apache.org> on 2019/08/22 08:48:00 UTC

[jira] [Updated] (HADOOP-16527) Add a whitelist of endpoints to skip Kerberos authentication

     [ https://issues.apache.org/jira/browse/HADOOP-16527?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Akira Ajisaka updated HADOOP-16527:
-----------------------------------
    Summary: Add a whitelist of endpoints to skip Kerberos authentication  (was: Add a whitelist of endpoints to allow simple authentication even if security is enabled)

> Add a whitelist of endpoints to skip Kerberos authentication
> ------------------------------------------------------------
>
>                 Key: HADOOP-16527
>                 URL: https://issues.apache.org/jira/browse/HADOOP-16527
>             Project: Hadoop Common
>          Issue Type: New Feature
>          Components: security
>            Reporter: Akira Ajisaka
>            Assignee: Akira Ajisaka
>            Priority: Major
>
> HADOOP-15707 added /isActive servlet for load balancers and HADOOP-16398 added /prom servlet for prometheus server. However, prometheus server and most load balancers do not support kerberos authentication. Therefore if kerberos authentication is enabled, prometheus server or load balancers cannot access to the endpoints.
> We would like to propose a whitelist of endpoints to avoid kerberos authentication.



--
This message was sent by Atlassian Jira
(v8.3.2#803003)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org