[
https://issues.apache.org/jira/browse/LIVY-481?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17484274#comment-17484274
]
Jeff Xu commented on LIVY-481:
------------------------------
Just want to post a real example of how to set this property. I spent a few
hours to figure this out, which is the last piece of a working setup of
Kerberos cross-realm using Livy API using AWS EMR.
{noformat}
# /etc/livy/conf/livy.conf
livy.server.auth.kerberos.name_rules =
RULE:[1:$1@$0](.*@EXAMPLE\.COM)s/@.*//g\nRULE:[1:$1@$0](.*@)s/@.*///L\nDEFAULT
{noformat}
> Add support for hadoop.security.auth_to_local
> ----------------------------------------------
>
> Key: LIVY-481
> URL: https://issues.apache.org/jira/browse/LIVY-481
> Project: Livy
> Issue Type: New Feature
> Components: Core
> Affects Versions: 0.5.0, 0.6.0
> Reporter: Ruslan Dautkhanov
> Priority: Major
> Labels: auth_to_local, authentication
>
> Would be great to have support for
> {code:java}
> hadoop.security.auth_to_local{code}
>
> [https://hortonworks.com/blog/fine-tune-your-apache-hadoop-security-settings/]
> [https://www.cloudera.com/documentation/enterprise/latest/topics/cdh_sg_kerbprin_to_sn.html]
>
> [https://hadoop.apache.org/docs/stable/hadoop-project-dist/hadoop-common/SecureMode.html]
>
>
> PS. I was thinking {code}livy.server.auth.kerberos.name-rules {code} could
> provide something similar based on config name, but can't find any
> confirmation to this in documentation, nor in code..
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
