[
https://issues.apache.org/jira/browse/MAPREDUCE-7154?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16671604#comment-16671604
]
Steve Loughran commented on MAPREDUCE-7154:
-------------------------------------------
I don't believe this should be supported in production clusters for the
following reason: people shouldn't be using clusters without Kerberos.
For testing HADOOP-14556, I have to come up with an alternate strategy, such as
creating a new FileOutputFormats to always collect DTs
> TokenCache.obtainTokensForNamenodes() to get DTs even when security is off
> --------------------------------------------------------------------------
>
> Key: MAPREDUCE-7154
> URL: https://issues.apache.org/jira/browse/MAPREDUCE-7154
> Project: Hadoop Map/Reduce
> Issue Type: Improvement
> Components: client
> Affects Versions: 3.2.0
> Reporter: Steve Loughran
> Priority: Minor
>
> Currently {{TokenCache.obtainTokensForNamenodes()}} returns immediately if
> security disabled. This works when DTs are only built from Kerberos creds,
> but means that filesystems which serve up credentials which don't need
> kerberos (HADOOP-14556 for S3A, ABFS and WASB can also be enhanced to do
> this), don't get picked up
> The token cache can just ask each FS for any tokens, relying on them to
> return null if they aren't generating/forwarding any
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
