flink-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF GitHub Bot (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (FLINK-3929) Support for Kerberos Authentication with Keytab Credential
Date Wed, 03 Aug 2016 00:18:20 GMT

    [ https://issues.apache.org/jira/browse/FLINK-3929?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15405073#comment-15405073
] 

ASF GitHub Bot commented on FLINK-3929:
---------------------------------------

Github user vijikarthi commented on the issue:

    https://github.com/apache/flink/pull/2275
  
    @mxm - I have addressed most of the feedback and pushed the changes. Please take a look
when you get a chance. 
    
    Regarding the secure test cases, 
    -  HDFS and Yarn are handled through the @BeforeClass and @AfterClass style and they do
not use custom JRunner implementation. As you have suggested, I could keep just one or two
tests for each of the modules to cut down the running time, if that's okay with you?
    - Kafka tests are handled with custom JRunner and if we need to move it to @BeforeClass
and @AfterClass, then we may have to duplicate the code used in the base classes which may
not look good. For e.g., Have a look at Kafka09ProducerSecuredITCase which is extended from
Kafka09ProducerITCase which has 2 level of parent classes (KafkaProducerTestBase & KafkaTestBase).
If we write a separate test case for secure cluster, then I may have to duplicate some of
these base class code which can be avoided if we use custom JRunner. We could still limit
the number of test cases to just one or two to minimize the running time. Please let me know
your thoughts?


> Support for Kerberos Authentication with Keytab Credential
> ----------------------------------------------------------
>
>                 Key: FLINK-3929
>                 URL: https://issues.apache.org/jira/browse/FLINK-3929
>             Project: Flink
>          Issue Type: New Feature
>            Reporter: Eron Wright 
>            Assignee: Vijay Srinivasaraghavan
>              Labels: kerberos, security
>   Original Estimate: 672h
>  Remaining Estimate: 672h
>
> _This issue is part of a series of improvements detailed in the [Secure Data Access|https://docs.google.com/document/d/1-GQB6uVOyoaXGwtqwqLV8BHDxWiMO2WnVzBoJ8oPaAs/edit?usp=sharing]
design doc._
> Add support for a keytab credential to be associated with the Flink cluster, to facilitate:
> - Kerberos-authenticated data access for connectors
> - Kerberos-authenticated ZooKeeper access
> Support both the standalone and YARN deployment modes.
>  



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message