[
https://issues.apache.org/jira/browse/MESOS-3560?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14946756#comment-14946756
]
Michael Park commented on MESOS-3560:
-------------------------------------
>From what I can tell, what [~adam-mesos] mentioned in his presentation was
>explaining why the {{secret}} field is {{optional}}, not why the type of
>{{secret}} is {{bytes}}. That is, {{Kerberos}} for example passes its tickets
>out-of-band, so it doesn't use the {{secret}} part of {{Credential}}, just
>{{principal}}.
I would much prefer to actually solve this problem now rather than just
documenting the behavior. Since the current behavior is inconsistent and
unintended, we'll end up breaking more people later when we go to fix it.
> JSON-based credential files do not work correctly
> -------------------------------------------------
>
> Key: MESOS-3560
> URL: https://issues.apache.org/jira/browse/MESOS-3560
> Project: Mesos
> Issue Type: Bug
> Components: master
> Reporter: Michael Park
> Assignee: Isabel Jimenez
> Labels: mesosphere
> Fix For: 0.20.0, 0.21.0, 0.22.0, 0.23.0, 0.24.0
>
>
> Specifying the following credentials file:
> {code}
> {
> “credentials”: [
> {
> “principal”: “user”,
> “secret”: “password”
> }
> ]
> }
> {code}
> Then hitting a master endpoint with:
> {code}
> curl -i -u “user:password” ...
> {code}
> Does not work. This is contrary to the text-based credentials file which
> works:
> {code}
> user password
> {code}
> Currently, the password in a JSON-based credentials file needs to be
> base64-encoded in order for it to work:
> {code}
> {
> “credentials”: [
> {
> “principal”: “user”,
> “secret”: “cGFzc3dvcmQ=”
> }
> ]
> }
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
