[
https://issues.apache.org/jira/browse/HADOOP-12389?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14738658#comment-14738658
]
Steve Loughran commented on HADOOP-12389:
-----------------------------------------
bq. if there is no proxy entry for a given user, then self impersonation is
allowed. This protects against the few cases where self impersonation would be
a bad thing, because at least in all the cases I'm thinking of, those services
always have a proxy entry anyway.
I'm happy with this, though need someone who understands the hadoop security
model to offer valid opinions
> allow self-impersonation
> ------------------------
>
> Key: HADOOP-12389
> URL: https://issues.apache.org/jira/browse/HADOOP-12389
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 3.0.0
> Reporter: Allen Wittenauer
>
> This is kind of dumb:
> org.apache.hadoop.security.authorize.AuthorizationException: User: aw is not
> allowed to impersonate aw
> Users should be able to impersonate themselves in secure and non-secure cases
> automatically, for free.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
