Repository: hadoop Updated Branches: refs/heads/trunk 3ca4d6ddf -> 4070caad7
HADOOP-13526. Add detailed logging in KMS for the authentication failure of proxy user. Contributed by Suraj Acharya. Project: http://git-wip-us.apache.org/repos/asf/hadoop/repo Commit: http://git-wip-us.apache.org/repos/asf/hadoop/commit/4070caad Tree: http://git-wip-us.apache.org/repos/asf/hadoop/tree/4070caad Diff: http://git-wip-us.apache.org/repos/asf/hadoop/diff/4070caad Branch: refs/heads/trunk Commit: 4070caad70db49b50554088d29ac2fbc7ba62a0a Parents: 3ca4d6d Author: Xiao Chen <[email protected]> Authored: Mon Aug 22 18:06:53 2016 -0700 Committer: Xiao Chen <[email protected]> Committed: Mon Aug 22 18:09:35 2016 -0700 ---------------------------------------------------------------------- .../web/DelegationTokenAuthenticationFilter.java | 10 ++++++++++ 1 file changed, 10 insertions(+) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/hadoop/blob/4070caad/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/token/delegation/web/DelegationTokenAuthenticationFilter.java ---------------------------------------------------------------------- diff --git a/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/token/delegation/web/DelegationTokenAuthenticationFilter.java b/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/token/delegation/web/DelegationTokenAuthenticationFilter.java index fb6817e..112c952 100644 --- a/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/token/delegation/web/DelegationTokenAuthenticationFilter.java +++ b/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/token/delegation/web/DelegationTokenAuthenticationFilter.java @@ -39,6 +39,8 @@ import org.apache.hadoop.util.HttpExceptionUtils; import org.apache.http.NameValuePair; import org.apache.http.client.utils.URLEncodedUtils; import org.codehaus.jackson.map.ObjectMapper; +import org.slf4j.Logger; +import org.slf4j.LoggerFactory; import javax.servlet.FilterChain; import javax.servlet.FilterConfig; @@ -81,6 +83,9 @@ public class DelegationTokenAuthenticationFilter private static final String ERROR_EXCEPTION_JSON = "exception"; private static final String ERROR_MESSAGE_JSON = "message"; + private static final Logger LOG = LoggerFactory.getLogger( + DelegationTokenAuthenticationFilter.class); + /** * Sets an external <code>DelegationTokenSecretManager</code> instance to * manage creation and verification of Delegation Tokens. @@ -261,6 +266,11 @@ public class DelegationTokenAuthenticationFilter HttpExceptionUtils.createServletExceptionResponse(response, HttpServletResponse.SC_FORBIDDEN, ex); requestCompleted = true; + if (LOG.isDebugEnabled()) { + LOG.debug("Authentication exception: " + ex.getMessage(), ex); + } else { + LOG.warn("Authentication exception: " + ex.getMessage()); + } } } } --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
