[
https://issues.apache.org/jira/browse/HADOOP-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12620783#action_12620783
]
Tsz Wo (Nicholas), SZE commented on HADOOP-3854:
------------------------------------------------
Since we define the filter mapping for the user-facing pages only, the
non-user-facing pages won't trigger filters. So if their is a user-defined
authentication filter, it won't protect the non-user-facing pages.
The non-user-facing pages should use hadoop internal authentication mechanism
(currently, we use UGI) but not a user-defined authentication filter.
Otherwise, we have to provide a plug-in framework for users to integrate their
authentication technology to hadoop.
> org.apache.hadoop.http.HttpServer should support user configurable filter
> -------------------------------------------------------------------------
>
> Key: HADOOP-3854
> URL: https://issues.apache.org/jira/browse/HADOOP-3854
> Project: Hadoop Core
> Issue Type: New Feature
> Reporter: Tsz Wo (Nicholas), SZE
> Attachments: 3854_20080729.patch, 3854_20080730.patch,
> 3854_20080805.patch, 3854_20080806.patch, 3854_20080807.patch,
> LoggingFilter.java, LoggingFilterConfiguration.java, SampleInitializer.java
>
>
> Filters provide universal functions such as authentication, logging and
> auditing, etc. HttpServer should support configurable filters, so that
> individual site administrators could possibly configure filters for their web
> site.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
