[ https://issues.apache.org/jira/browse/HADOOP-10784?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14053827#comment-14053827 ]
Larry McCay commented on HADOOP-10784: -------------------------------------- Hi [~kellyzly] - Thanks for the feedback. You will want to try the --negotiate flag with curl - it isn't up to you to provide the token. The document could use a simple example. Feel free to contribute a patch back once you get --negotiate working to your liking. > Need add more in KMS document > ----------------------------- > > Key: HADOOP-10784 > URL: https://issues.apache.org/jira/browse/HADOOP-10784 > Project: Hadoop Common > Issue Type: Improvement > Components: security > Affects Versions: 2.4.1 > Reporter: liyunzhang > Priority: Minor > > Now i can only find the kms document in > http://aajisaka.github.io/hadoop-project/hadoop-kms/index.html, but it is > very simple. for example, i don't know how to enabling Kerberos HTTP SPNEGO > Authentication although i configure the kms-site.xml according to the > reference page. > How to test it ? > I send following request to KMS server: > curl -g --header "Authorization:Negotiate123455" > http://localhost:16000/kms/v1/key/k1 > I read the KMS code and found that i need add parameters in request header > and the format is "Authorization:Negotiate $token". But how the token is > generated? -- This message was sent by Atlassian JIRA (v6.2#6252)