[
https://issues.apache.org/jira/browse/HADOOP-7853?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Daryn Sharp updated HADOOP-7853:
--------------------------------
Attachment: HADOOP-7853.patch
UGI and SPNEGO will now instantiate a LoginContext that explicitly uses their
respective security configurations. Even if another class sets the global
security conf, UGI and SPNEGO will not be affected.
Extra log debugs are included that were invaluable in tracking down this silent
problem.
> multiple javax security configurations cause conflicts
> ------------------------------------------------------
>
> Key: HADOOP-7853
> URL: https://issues.apache.org/jira/browse/HADOOP-7853
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 0.20.205.1
> Reporter: Daryn Sharp
> Assignee: Daryn Sharp
> Priority: Blocker
> Attachments: HADOOP-7853.patch
>
>
> Both UGI and the SPNEGO KerberosAuthenticator set the global javax security
> configuration. SPNEGO stomps on UGI's security config which leads to
> kerberos/SASL authentication errors.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
