hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Doug Cutting (JIRA)" <j...@apache.org>
Subject [jira] Commented: (HADOOP-6419) Change RPC layer to support SASL/token based mutual authentication
Date Fri, 15 Jan 2010 21:38:54 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-6419?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12800921#action_12800921
] 

Doug Cutting commented on HADOOP-6419:
--------------------------------------

> Ideally we would move to NIO framework like netty, but that would much larger effort.

I'd like to, in AVRO-341, define a standard, language-independent, secure RPC transport for
Avro.  In Java we can then either implement this from scratch, perhaps stealing code from
ipc.Server, or we can try to implement it using a framework.  If possible, a framework would
be preferred, I think.  Then we can port Hadoop's RPC to use this, building on HDFS-892. 
Does that sounds like a reasonable plan?

> Change RPC layer to support SASL/token based mutual authentication
> ------------------------------------------------------------------
>
>                 Key: HADOOP-6419
>                 URL: https://issues.apache.org/jira/browse/HADOOP-6419
>             Project: Hadoop Common
>          Issue Type: New Feature
>          Components: security
>            Reporter: Kan Zhang
>            Assignee: Kan Zhang
>         Attachments: c6419-26.patch
>
>
> The authentication mechanism to use will be SASL DIGEST-MD5 (see RFC-2222 and RFC-2831).
Since J2SE 5, Sun provides a SASL implementation by default. Both our delegation token and
job token can be used as credentials for SASL DIGEST-MD5 authentication.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message