[ https://issues.apache.org/jira/browse/HADOOP-10596?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13996639#comment-13996639 ]
Haohui Mai commented on HADOOP-10596: ------------------------------------- bq. params.put(AuthenticationFilter.AUTH_TYPE, "kerberos"); Introducing the secret file is a much larger change. I think a better idea is to clean it up. bq. ... all the web resources should be secured. Please let me know if it is not the case. I think there is a configuration to toggle whether NN web UI can be accessed without spnego in secure mode. > HttpServer2 should apply the authentication filter to some urls instead of > null > ------------------------------------------------------------------------------- > > Key: HADOOP-10596 > URL: https://issues.apache.org/jira/browse/HADOOP-10596 > Project: Hadoop Common > Issue Type: Bug > Reporter: Zhijie Shen > Assignee: Zhijie Shen > Attachments: HADOOP-10596.1.patch > > > HttpServer2 should apply the authentication filter to some urls instead of > null. In addition, it should be more flexible for users to configure SPNEGO. -- This message was sent by Atlassian JIRA (v6.2#6252)