[jira] [Updated] (HDFS-3568) fuse_dfs: add support for security

Fri, 29 Jun 2012 16:03:46 -0700 

     [ 
https://issues.apache.org/jira/browse/HDFS-3568?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Colin Patrick McCabe updated HDFS-3568:
---------------------------------------

    Attachment: HDFS-3568.001.patch

patch to support security in fuse_dfs.

* add UserGroupInformation#fromKerberosTicketCache.  As the name suggests, it 
allows us to create a UGI from a ticket cache path.

* fuse_connect.c: discover whether kerberos is configured.  If so, locate the 
appropriate kerberos ticket cache path and pass that to hdfsBuilderConnect.

* hdfs.c: add a few utility functions such as hadoopConfSet, jStrToCstr, 
hadoopConfGet

* hdfs.c: add the hdfsBuilder interface.  The basic idea is that rather than 
creating 2^N different 'connect' functions (where N is the number of possible 
configuration options), we create a builder and then set some options on it.  
Then we call hdfsBuilderConnect.

* Because the hdfsBuilder type is not exported, new fields can be added to it 
later as needed, without breaking backwards compatibility.  The old 
hdsfConnect* functions are kept for now for compatbility reasons.

* This patch unifies the connect functions into one function, rather than 
having totally separate code paths for each.

* This patch also adds the hdfsConfGet API, which returns the key associated 
with a given Configuration key (or NULL if there is no such key.)  This is 
needed so that fuse_dfs can determine if Kerberos is enabled.
                
> fuse_dfs: add support for security
> ----------------------------------
>
>                 Key: HDFS-3568
>                 URL: https://issues.apache.org/jira/browse/HDFS-3568
>             Project: Hadoop HDFS
>          Issue Type: Improvement
>    Affects Versions: 1.0.0, 2.0.0-alpha
>            Reporter: Colin Patrick McCabe
>            Assignee: Colin Patrick McCabe
>             Fix For: 1.1.0, 2.0.1-alpha
>
>         Attachments: HDFS-3568.001.patch
>
>
> fuse_dfs should have support for Kerberos authentication.  This would allow 
> FUSE to be used in a secure cluster.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to