[
https://issues.apache.org/jira/browse/HADOOP-10784?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14053827#comment-14053827
]
Larry McCay commented on HADOOP-10784:
--------------------------------------
Hi [~kellyzly] - Thanks for the feedback. You will want to try the --negotiate
flag with curl - it isn't up to you to provide the token. The document could
use a simple example. Feel free to contribute a patch back once you get
--negotiate working to your liking.
> Need add more in KMS document
> -----------------------------
>
> Key: HADOOP-10784
> URL: https://issues.apache.org/jira/browse/HADOOP-10784
> Project: Hadoop Common
> Issue Type: Improvement
> Components: security
> Affects Versions: 2.4.1
> Reporter: liyunzhang
> Priority: Minor
>
> Now i can only find the kms document in
> http://aajisaka.github.io/hadoop-project/hadoop-kms/index.html, but it is
> very simple. for example, i don't know how to enabling Kerberos HTTP SPNEGO
> Authentication although i configure the kms-site.xml according to the
> reference page.
> How to test it ?
> I send following request to KMS server:
> curl -g --header "Authorization:Negotiate123455"
> http://localhost:16000/kms/v1/key/k1
> I read the KMS code and found that i need add parameters in request header
> and the format is "Authorization:Negotiate $token". But how the token is
> generated?
--
This message was sent by Atlassian JIRA
(v6.2#6252)
