Todd Lipcon has posted comments on this change. (
http://gerrit.cloudera.org:8080/9050 )
Change subject: WIP: KUDU-2264. Automatically attempt to re-acquire Kerberos
credentials before expiration
......................................................................
Patch Set 1:
I'm not certain it avoids the race. UGI's "relogin" code would end up logging
out the current Subject (which would be used by Kudu) and then logging it back
in. We'd have to have our own code which does a synchronized
(UserGroupInformation.class) { ... } or something in order to avoid potentially
accessing the Subject while it's in the process of re-login.
Alternatively we could add some code that attempts to retry authentication
failures if we previously had kerberos tickets and then notice that they
disappeared?
--
To view, visit http://gerrit.cloudera.org:8080/9050
To unsubscribe, visit http://gerrit.cloudera.org:8080/settings
Gerrit-Project: kudu
Gerrit-Branch: master
Gerrit-MessageType: comment
Gerrit-Change-Id: I514253e0a7f067dbc8ffe4eaf5a7a2c32900b539
Gerrit-Change-Number: 9050
Gerrit-PatchSet: 1
Gerrit-Owner: Todd Lipcon <[email protected]>
Gerrit-Reviewer: Adar Dembo <[email protected]>
Gerrit-Reviewer: Dan Burkert <[email protected]>
Gerrit-Reviewer: Kudu Jenkins
Gerrit-Reviewer: Todd Lipcon <[email protected]>
Gerrit-Comment-Date: Thu, 18 Jan 2018 20:09:45 +0000
Gerrit-HasComments: No
