You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Haohui Mai (JIRA)" <ji...@apache.org> on 2015/03/18 20:55:39 UTC

[jira] [Created] (HADOOP-11726) Allow applications to access both secure and insecure clusters at the same time

Haohui Mai created HADOOP-11726:
-----------------------------------

             Summary: Allow applications to access both secure and insecure clusters at the same time
                 Key: HADOOP-11726
                 URL: https://issues.apache.org/jira/browse/HADOOP-11726
             Project: Hadoop Common
          Issue Type: Bug
            Reporter: Haohui Mai


Today there are multiple integration issues when an application (particularly, distcp) access both secure and insecure clusters (e.g., HDFS-6776 / HDFS-7036)

There are four use cases in this scenario:

* Secure <-> Secure. Works.
* Insecure <-> Insecure. Works.
* Accessing secure clusters from insecure client. Will not work as expected. The insecure client won't be able to be authenticated with the secure client, otherwise it is a security vulnerability.
* Accessing insecure clusters from secure client. Currently it will not work as the secure client won't be able to obtain a delegation token from the insecure cluster.

This jira proposes to fix the last use case.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)