[
https://issues.apache.org/jira/browse/HADOOP-10895?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Yongjun Zhang updated HADOOP-10895:
-----------------------------------
Release Note:
Prior to this fix, the fallback from kerberos authenticator to pseudo
authenticator is enabled as hardcoded. After the fix, the fallback is disabled
by default, and user need to set configuration property
"ipc.client.fallback-to-simple-auth-allowed" to "true" to enable it.
was:
Prior to this fix, the fallback from kerberos authenticator to pseudo
authenticator is supported by default. After the fix, user need to set
configuration property "ipc.client.fallback-to-simple-auth-allowed" to "true"
to enable the fallback.
> HTTP KerberosAuthenticator fallback should have a flag to disable it
> --------------------------------------------------------------------
>
> Key: HADOOP-10895
> URL: https://issues.apache.org/jira/browse/HADOOP-10895
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 2.4.1
> Reporter: Alejandro Abdelnur
> Assignee: Yongjun Zhang
> Priority: Blocker
> Attachments: HADOOP-10895.001.patch, HADOOP-10895.002.patch,
> HADOOP-10895.003.patch, HADOOP-10895.004.patch
>
>
> Per review feedback in HADOOP-10771, {{KerberosAuthenticator}} and the
> delegation token version coming in with HADOOP-10771 should have a flag to
> disable fallback to pseudo, similarly to the one that was introduced in
> Hadoop RPC client with HADOOP-9698.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
