Wei-Chiu Chuang created HDDS-10350:
--------------------------------------
Summary: getDelegationToken() should not silently ignore if
security is not enabled
Key: HDDS-10350
URL: https://issues.apache.org/jira/browse/HDDS-10350
Project: Apache Ozone
Issue Type: Improvement
Reporter: Wei-Chiu Chuang
We've seen several cases where applications want to acquire delegation token
(for example, distcp from another cluster, for example, another application
that doesn't realize it's missing ozone.security.enabled = true)
https://github.com/apache/ozone/blob/0112a71615538c1714abb0529f5a6366f0173a89/hadoop-ozone/ozonefs-common/src/main/java/org/apache/hadoop/fs/ozone/BasicOzoneClientAdapterImpl.java#L441
The client simply silently skips requesting a delegation token in this case,
making troubleshooting super challenging. Some ideas for improvement
(1) add debug log
(2) send the request to fetch delegation token regardless. If it fails, at
least the error is easy to see.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
