Kannan Rajah created HADOOP-11310:
-------------------------------------
Summary: Load AuthenticationFilter config params from core-site.xml
Key: HADOOP-11310
URL: https://issues.apache.org/jira/browse/HADOOP-11310
Project: Hadoop Common
Issue Type: Improvement
Components: security
Affects Versions: 2.5.1
Reporter: Kannan Rajah
Assignee: Kannan Rajah
Priority: Minor
AuthenticationFilter exposes several configuration params such as
AuthenticationFilter#AUTH_TOKEN_VALIDITY. Normally these params go into
web.xml. The limitation of this approach is that each webserver (RM/NM/HBase)
has to configure these params separately in the corresponding web.xml files.
To address this use case, we can create a new class called
HadoopCoreAuthenticationFilter that extends AuthenticationFilter and overrides
the getConfiguration method to get the config params from core-site.xml as
well. All the webservers that depend on hadoop core automatically get a single
config defined in core-site.xml.
The config in core-site.xml looks like this:
<property>
<name>hadoop.http.authentication.signature.secret</name>
<value>13048203948239</value>
</property>
<property>
<name>hadoop.http.authentication.token.validity</name>
<value>48</value>
</property>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
