[
https://issues.apache.org/jira/browse/HDFS-2904?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13209885#comment-13209885
]
Daryn Sharp commented on HDFS-2904:
-----------------------------------
I think obtaining tokens from all NNs would also defeat the purpose of HA. Ie.
you can't get a token if one of the NNs is down.
On a tangent, I've been kicking around the idea of dns-sd for other reasons,
but it seems like it may have been a good fit for HA and token services. The
discovery wouldn't necessarily have to be multicast based. It could be dynamic
dns (RFC 2136) + GSS-TSIG (RFC 3645). The advertised service would look like:
_nn._hdfs.mygrid.mydomain. The records would contain the available host:port
services that are currently available. This probably isn't the right place to
discuss, but I thought I'd throw it out there.
> HA: Client support for getting delegation tokens to an HA cluster
> -----------------------------------------------------------------
>
> Key: HDFS-2904
> URL: https://issues.apache.org/jira/browse/HDFS-2904
> Project: Hadoop HDFS
> Issue Type: Sub-task
> Components: ha, hdfs client, name-node, security
> Affects Versions: HA branch (HDFS-1623)
> Reporter: Todd Lipcon
> Assignee: Todd Lipcon
> Priority: Critical
> Attachments: hdfs-2904.txt, hdfs-2904.txt, hdfs-2904.txt, test-dt.sh
>
>
> Currently we have server-side support for delegation tokens in HA, and some
> tests to verify it, but the client throws NPEs when trying to fetch a DT.
> This is because the cluster doesn't have a single hostname, but instead a
> logical nameservice name.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
