TempleZhou commented on a change in pull request #676: KYLIN-4033 Can not
access Kerberized Cluster with DebugTomcat
URL: https://github.com/apache/kylin/pull/676#discussion_r292730713
##########
File path: server/src/main/java/org/apache/kylin/rest/DebugTomcat.java
##########
@@ -99,6 +107,25 @@ private static File findFile(String dir, String ptn) {
}
return null;
}
+ public static boolean isKerberosEnabled() {
+ Configuration conf = new Configuration();
+ boolean authEnabled = conf.getBoolean("hadoop.security.authorization",
false);
+ String authMethod = conf.get("hadoop.security.authentication");
+ return authEnabled &&
authMethod.toLowerCase(Locale.ROOT).equals("kerberos");
+ }
+
+ public static void authKrb5() {
+ System.setProperty("java.security.krb5.conf", "/etc/krb5.conf");
Review comment:
You are right. And, maybe, the keytab principal and path should be set using
System.setProperty or Kylin Config. Do you have any idea?
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
With regards,
Apache Git Services
