[
https://issues.apache.org/jira/browse/HBASE-6671?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13447449#comment-13447449
]
Himanshu Vashishtha commented on HBASE-6671:
--------------------------------------------
Sorry for chiming in late, but I want to understand what is going on here. I
was reading HBase security code and the attached patch. A basic question:
Do we support proxy users? If so, then a use Joe who is not kerberos
authenticated can access hbase services by piggybacking on hbase credentials.
How one can enable/use it? Please share.
> Kerberos authenticated super user should be able to retrieve proxied
> delegation tokens
> --------------------------------------------------------------------------------------
>
> Key: HBASE-6671
> URL: https://issues.apache.org/jira/browse/HBASE-6671
> Project: HBase
> Issue Type: Bug
> Affects Versions: 0.94.1
> Reporter: Francis Liu
> Assignee: Francis Liu
> Fix For: 0.96.0, 0.94.2
>
> Attachments: 6671-trunk-v2.txt, proxy_fix_94.patch,
> proxy_fix_94.patch, proxy_fix_trunk.patch
>
>
> There a services such a oozie which perform actions in behalf of the user
> using proxy authentication. Retrieving delegation tokens should support this
> behavior.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
