AccessControlList uses full-principal names to verify acls causing queue-acls
to fail
-------------------------------------------------------------------------------------
Key: HADOOP-6634
URL: https://issues.apache.org/jira/browse/HADOOP-6634
Project: Hadoop Common
Issue Type: Bug
Components: security
Reporter: Vinod K V
Fix For: 0.22.0
ACL configuration so far was using short user-names. With the changed
{{UserGroupInformation}}, short names are different from the long
fully-qualified names. {{AccessControlList}} continues to use
{{UserGroupInformation.getUserName()}} for verifying access control. Because of
this, queue acls fail for a user "[email protected]" even though the short name
"user" is part of the acl configuration.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
