[
https://issues.apache.org/jira/browse/HADOOP-10596?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13996639#comment-13996639
]
Haohui Mai commented on HADOOP-10596:
-------------------------------------
bq. params.put(AuthenticationFilter.AUTH_TYPE, "kerberos");
Introducing the secret file is a much larger change. I think a better idea is
to clean it up.
bq. ... all the web resources should be secured. Please let me know if it is
not the case.
I think there is a configuration to toggle whether NN web UI can be accessed
without spnego in secure mode.
> HttpServer2 should apply the authentication filter to some urls instead of
> null
> -------------------------------------------------------------------------------
>
> Key: HADOOP-10596
> URL: https://issues.apache.org/jira/browse/HADOOP-10596
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: Zhijie Shen
> Assignee: Zhijie Shen
> Attachments: HADOOP-10596.1.patch
>
>
> HttpServer2 should apply the authentication filter to some urls instead of
> null. In addition, it should be more flexible for users to configure SPNEGO.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
