[
https://issues.apache.org/jira/browse/HDFS-6149?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13945449#comment-13945449
]
Jinghui Wang commented on HDFS-6149:
------------------------------------
The test that cancels delegation token in testDelegationTokenHttpFSAccess
assumes the operation does not require credentials. However the following block
of code in HttpFSKerberosAuthenticationHandler shows that if there is no token,
then the CANCELDELEGATIONTOKEN operation is not performed. Thus causing an
assertion error as the the test expects a response code of 200 but getting 401
instead.
else if (dtOp.requiresKerberosCredentials() && token == null) {
response.sendError(HttpServletResponse.SC_UNAUTHORIZED,
MessageFormat.format(
"Operation [{0}] requires SPNEGO authentication established",
dtOp));
requestContinues = false;
}
> Running UTs with testKerberos profile has failures.
> ---------------------------------------------------
>
> Key: HDFS-6149
> URL: https://issues.apache.org/jira/browse/HDFS-6149
> Project: Hadoop HDFS
> Issue Type: Test
> Components: test
> Affects Versions: 2.2.0
> Reporter: Jinghui Wang
> Assignee: Jinghui Wang
> Fix For: 2.3.0
>
>
> UT failures in TestHttpFSWithKerberos.
> Tests using testDelegationTokenWithinDoAs fail because of the statically set
> keytab file.
> Test testDelegationTokenHttpFSAccess also fails due the incorrect assumption
> that CANCELDELEGATIONTOKEN does not require credentials.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
