Github user skonto commented on a diff in the pull request:
https://github.com/apache/spark/pull/20945#discussion_r178994840
--- Diff:
resource-managers/mesos/src/main/scala/org/apache/spark/scheduler/cluster/mesos/MesosClusterScheduler.scala
---
@@ -506,6 +506,10 @@ private[spark] class MesosClusterScheduler(
options ++= Seq("--class", desc.command.mainClass)
}
+ desc.conf.getOption("spark.mesos.proxyUser").foreach { v =>
+ options ++= Seq("--proxy-user", v)
--- End diff --
> My problem here is that you're making spark-submit + proxy user + client
mode the official way to > run Spark on Mesos in cluster mode, and now you're
basically exposing everyone to that security > issue.
Yes because the assumption was client mode was safe. There is no warning
about this especially for end users.
---
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
