[
https://issues.apache.org/jira/browse/HADOOP-8779?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15127374#comment-15127374
]
Li Lu commented on HADOOP-8779:
-------------------------------
Agreed. IIUC tokens generally represent authorizations. We may want to further
separate authentication (who am I) and authorization (what can I do) in Hadoop.
Having tokens as a fundamental concept for all authentication types may help to
support HDFS multi-tenancy and integration with YARN.
> Use tokens regardless of authentication type
> --------------------------------------------
>
> Key: HADOOP-8779
> URL: https://issues.apache.org/jira/browse/HADOOP-8779
> Project: Hadoop Common
> Issue Type: New Feature
> Components: fs, security
> Affects Versions: 2.0.2-alpha, 3.0.0
> Reporter: Daryn Sharp
> Assignee: Daryn Sharp
>
> Security is a combination of authentication and authorization (tokens).
> Authorization may be granted independently of the authentication model.
> Tokens should be used regardless of simple or kerberos authentication.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
