hadoop-yarn-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Eric Yang (JIRA)" <j...@apache.org>
Subject [jira] [Resolved] (YARN-8790) Authentication Filter change to force security check
Date Wed, 24 Oct 2018 22:25:00 GMT

     [ https://issues.apache.org/jira/browse/YARN-8790?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Eric Yang resolved YARN-8790.
-----------------------------
    Resolution: Done

There is no code change required to enable Kerberos authentication with web socket.  The test
is sufficient to show this is completed.

> Authentication Filter change to force security check 
> -----------------------------------------------------
>
>                 Key: YARN-8790
>                 URL: https://issues.apache.org/jira/browse/YARN-8790
>             Project: Hadoop YARN
>          Issue Type: Sub-task
>            Reporter: Zian Chen
>            Assignee: Eric Yang
>            Priority: Major
>              Labels: Docker
>
> Hadoop node manager REST API is authenticated using AuthenticationFilter from Hadoop-auth
project. AuthenticationFilter is added to the new WebSocket URL path spec. The requested remote
user is verified to match the container owner to allow WebSocket connection to be established.
WebSocket servlet code enforces the username match check.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-dev-unsubscribe@hadoop.apache.org
For additional commands, e-mail: yarn-dev-help@hadoop.apache.org


Mime
View raw message