[
https://issues.apache.org/jira/browse/HADOOP-8883?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13808231#comment-13808231
]
Robert Kanter commented on HADOOP-8883:
---------------------------------------
Alejandro told me offline that he checked and Oracle JDK 1.6 does actually
exclude the {{Authorization}} header as well. I know that the patch fixed the
problem we were having, so now I'm confused as to why it was even working...
I'll try to look into this.
> Anonymous fallback in KerberosAuthenticator is broken
> -----------------------------------------------------
>
> Key: HADOOP-8883
> URL: https://issues.apache.org/jira/browse/HADOOP-8883
> Project: Hadoop Common
> Issue Type: Bug
> Affects Versions: 2.0.3-alpha
> Reporter: Robert Kanter
> Assignee: Robert Kanter
> Labels: security
> Fix For: 2.0.3-alpha
>
> Attachments: HADOOP-8883.patch
>
>
> HADOOP-8855 changed KerberosAuthenticator to handle when the JDK did the
> SPNEGO already; but this change broke using the fallback authenticator
> (PseudoAuthenticator) with an anonymous user (see OOZIE-1010).
--
This message was sent by Atlassian JIRA
(v6.1#6144)
