[
https://issues.apache.org/jira/browse/HADOOP-12049?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14601408#comment-14601408
]
Hudson commented on HADOOP-12049:
---------------------------------
FAILURE: Integrated in Hadoop-Hdfs-trunk-Java8 #228 (See
[https://builds.apache.org/job/Hadoop-Hdfs-trunk-Java8/228/])
HADOOP-12049. Control http authentication cookie persistence via configuration.
Contributed by Huizhi Lu. (benoy: rev a815cc157ceb24e02189634a85abed8e874568e0)
*
hadoop-common-project/hadoop-common/src/test/java/org/apache/hadoop/http/TestHttpCookieFlag.java
*
hadoop-common-project/hadoop-common/src/test/java/org/apache/hadoop/http/TestAuthenticationSessionCookie.java
*
hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/server/AuthenticationFilter.java
> Control http authentication cookie persistence via configuration
> ----------------------------------------------------------------
>
> Key: HADOOP-12049
> URL: https://issues.apache.org/jira/browse/HADOOP-12049
> Project: Hadoop Common
> Issue Type: Improvement
> Components: security
> Affects Versions: 3.0.0
> Reporter: Benoy Antony
> Assignee: hzlu
> Labels: patch
> Fix For: 3.0.0, 2.8.0
>
> Attachments: HADOOP-12049.001.patch, HADOOP-12049.003.patch,
> HADOOP-12049.005.patch, HADOOP-12049.007.patch
>
>
> During http authentication, a cookie is dropped. This is a persistent cookie.
> The cookie is valid across browser sessions.
> For clusters which require enhanced security, it is desirable to have a
> session cookie so that cookie gets deleted when the user closes browser
> session.
> It should be possible to specify cookie persistence (session or persistent)
> via configuration
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
