[
https://issues.apache.org/jira/browse/HDFS-991?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12838041#action_12838041
]
Owen O'Malley commented on HDFS-991:
------------------------------------
{quote}
When does the delegation token that the namenode provides
(redirectToRandomDataNode()) expire?
{quote}
Delegation tokens default to living for 1 day.
{quote}
A lot of websites pass security tokens via cookies, because GET parameters tend
to get written down in referrer fields and such.
{quote}
Jetty doesn't do such logging. *smile* But as you point out, I don't think we
really have a workable choice since we have no guarantee that the datanode can
get the cookies set by the namenode. *sigh*
> Allow browsing the filesystem over http using delegation tokens
> ---------------------------------------------------------------
>
> Key: HDFS-991
> URL: https://issues.apache.org/jira/browse/HDFS-991
> Project: Hadoop HDFS
> Issue Type: New Feature
> Reporter: Owen O'Malley
> Assignee: Owen O'Malley
> Fix For: 0.22.0
>
> Attachments: h-991.patch
>
>
> Assuming the user authenticates to the NameNode in the browser, allow them to
> browse the file system by adding a delegation token the the url when it is
> redirected to a datanode.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
