Alexey Serbin has submitted this change and it was merged. Change subject: [security] derive TSK params from authn token ones ......................................................................
[security] derive TSK params from authn token ones Derive the TSK validity interval from the authn token validity period. The idea is to have set of parameters which is user-oriented: the authn token lifetime directly impacts user job lifetimes, etc. The default validity period for authn tokens is set to 7 days to mirror other Hadoop ecosystem components (e.g. HBase). The TSK validity interval is derived from authn token validity period: tsk_validity = authn_token_validity + tsk_rotation. Change-Id: I95bc64897ed16becda4ab8de6817695fdb48e9eb Reviewed-on: http://gerrit.cloudera.org:8080/6071 Tested-by: Kudu Jenkins Reviewed-by: Dan Burkert <[email protected]> --- M src/kudu/integration-tests/token_signer-itest.cc M src/kudu/master/master.cc M src/kudu/security/token-test.cc M src/kudu/security/token_signer.cc M src/kudu/security/token_signer.h 5 files changed, 58 insertions(+), 45 deletions(-) Approvals: Dan Burkert: Looks good to me, approved Kudu Jenkins: Verified -- To view, visit http://gerrit.cloudera.org:8080/6071 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-MessageType: merged Gerrit-Change-Id: I95bc64897ed16becda4ab8de6817695fdb48e9eb Gerrit-PatchSet: 6 Gerrit-Project: kudu Gerrit-Branch: master Gerrit-Owner: Alexey Serbin <[email protected]> Gerrit-Reviewer: Alexey Serbin <[email protected]> Gerrit-Reviewer: Dan Burkert <[email protected]> Gerrit-Reviewer: Kudu Jenkins Gerrit-Reviewer: Tidy Bot Gerrit-Reviewer: Todd Lipcon <[email protected]>
