[
https://issues.apache.org/jira/browse/HIVE-842?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12913691#action_12913691
]
Todd Lipcon commented on HIVE-842:
----------------------------------
OK. The code in Hadoop Common is somewhat reusable for this, so it shouldn't be
too hard to implement. If I recall correctly, though, the delegation tokens
rely on a secret key that the master daemon periodically rotates. We need to
add some kind of persistent token storage for this to work - I guess in the
metastore's DB?
To make this easier to review, I'd like to do the straight kerberos first, and
then add delegation tokens in a second patch/JIRA. Sound good?
> Authentication Infrastructure for Hive
> --------------------------------------
>
> Key: HIVE-842
> URL: https://issues.apache.org/jira/browse/HIVE-842
> Project: Hadoop Hive
> Issue Type: New Feature
> Components: Server Infrastructure
> Reporter: Edward Capriolo
> Assignee: Todd Lipcon
> Attachments: HiveSecurityThoughts.pdf
>
>
> This issue deals with the authentication (user name,password) infrastructure.
> Not the authorization components that specify what a user should be able to
> do.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
