Re: Check out the updated site

As it is Apache Licensed - it can be used anywhere freely. :) On Mon, Apr 14, 2014 at 4:09 PM, Pam Wonson pwon...@hortonworks.com wrote: That's great can I use it for the overview section :) Sent from my iPhone On Apr 14, 2014, at 12:32 PM, larry mccay lmc...@apache.org wrote: Hi Folks

Re: [VOTE] Release Apache Knox 0.4.0

The KEYS file can be found at the following location: https://dist.apache.org/repos/dist/release/knox/KEYS Please use that to verify the signature of the release. On Mon, Apr 14, 2014 at 10:41 PM, Kevin Minder kevin.min...@hortonworks.com wrote: A candidate for the Apache Knox 0.4.0 release

Re: [VOTE] Release Apache Knox 0.4.0

, verified signatures and hashes. 2) Built from source and ran unit tests. 3) Verified .zip install using WebHdfs, WebHCat, Ooize, HBase and Hive groovy scripts against HDP Sandbox 2.1. On 4/15/14 10:00 AM, larry mccay wrote: The KEYS file can be found at the following location: https

Re: Jira for having release dir picked up by mirrors (INFRA-7606)

Waho!!! On Mon, Apr 21, 2014 at 2:45 PM, Kevin Minder kevin.min...@hortonworks.comwrote: Infra has fixed this and the 0.4.0 bits are showing up on mirrors. For example: http://apache.cs.utah.edu/knox/ On 4/21/14 9:22 AM, Kevin Minder wrote: I wasn't sure if releases in

[ANNOUNCE] Apache Knox 0.4.0 Released!

The Apache Knox team is proud to announce the release of Apache Knox 0.4.0 - our first release as an Apache TLP! Apache Knox is a REST API Gateway for providing secure access to the data and processing resources of Hadoop clusters. More details on Apache Knox can be found at:

Fwd: Text cmd in webhdfs

Interesting thread on common and HDFS lists. Seems it won't likely make it into webhdfs but it is an interesting usecase for Knox... -- Forwarded message -- From: Nikita Makeev whale2@gmail.com Date: Apr 24, 2014 1:09 PM Subject: Text cmd in webhdfs To:

Re: Knox - OAuth2 integration

Hello Marton - Thank you for posting to the dev list! Kevin has been on the road this week and I believe today is a travel day - so he will likely be unavailable most of the day. I think that your thinking is mostly inline with what we have considered while investigating OAuth support for Knox

Re: Knox - OAuth2 integration

, larry mccay larry.mc...@gmail.com wrote: Hello Marton - Thank you for posting to the dev list! Kevin has been on the road this week and I believe today is a travel day - so he will likely be unavailable most of the day. I think that your thinking is mostly inline with what we have

Fwd: Reg HttpFS

Let's try from this email address -- Forwarded message -- From: Larry McCay lmc...@hortonworks.com Date: Fri, May 16, 2014 at 3:18 PM Subject: Fwd: Reg HttpFS To: larry mccay larry.mc...@gmail.com -- Forwarded message -- From: Larry McCay lmc

OAuth 2 Authentication in for REST and Apache Oltu

Here is a good article on using Oltu in JAX-RS to authenticate a google user and acquire user profile information: http://carminedimascio.com/2014/02/google-oauth2-and-jax-rs/ Note the use of JWT as well.

Re: Implementing full BASH shell access in Knox

on a patch for this request here: https://github.com/ekohlwey/knox/tree/KNOX-250 And I've also included some thoughts on the issue under its JIRA ticket: https://issues.apache.org/jira/browse/KNOX-250 Any feedback is much appreciated! On Mon, Feb 10, 2014 at 11:55 AM, larry mccay larry.mc

Re: [jira] [Commented] (KNOX-385) Simplify Configuration for Default Topology

Components: Server Reporter: Larry McCay Assignee: Larry McCay Fix For: 0.5.0 Currently, there is a configuration element for the path to forward the incoming request to. This should be derived from the default topology file name not a separate

Anonymous API Patterns

All - As I begin to add the beginnings of the management API to Knox, it occurs to me that certain resource URLs will require/allow anonymous access. For instance, admin/api/v1/version shouldn't require authentication - since it may be used to determine which contract to use or some other

Re: Anonymous API Patterns

as long as you have declared the correct packages. This assumption would need to be verified though. On 6/20/14 6:14 PM, larry mccay wrote: All - As I begin to add the beginnings of the management API to Knox, it occurs to me that certain resource URLs will require/allow anonymous access

Re: Anonymous API Patterns

an anonymous pattern/chain. On 6/20/14 6:59 PM, larry mccay wrote: That is exactly what I am describing. I'll have to dig into the jersey handoff in order to understand though I think you are saying that the patterns aren't used to route to any particular filter chain. Not sure I understand

[DISCUSS] Feature Branches

All - I have been thinking about how to go about introducing branches for POCs or features that are not quite ready for prime time. Kevin and I have discussed it a bit offline and have a high level proposal for it. We can create feature branches that are named after jira that represent the

Re: How best to start long-running gateway processes/SSH Provider

Terrific! On Mon, Jul 28, 2014 at 2:08 PM, Ed Kohlwey ekohl...@gmail.com wrote: Makes sense to me - I'll incorporate these changes into my approach. Thanks! On Thu, Jul 24, 2014 at 11:58 AM, larry mccay larry.mc...@gmail.com wrote: Hi Ed - The issue is more accurately described

Commits should include CHANGES.txt update

Folks - I feel as though we should uptake the policy that is used for Hadoop common commits where every commit includes a record of the change in CHANGES.txt. This will make the release process easier since we won't have to backfill all of the changes at release candidate creation time. Also,

Re: Plans for the Next Apache Knox Release

on time to integrate it back into the master branch and make some updates that Larry has suggested, but hopefully I can in the coming week or two. On Wed, Aug 6, 2014 at 2:44 PM, larry mccay larry.mc...@gmail.com wrote: Folks - I'd like to summarize a brief conversation that Kevin and I had today

Re: Plans for the Next Apache Knox Release

that will make for a great offering and we need to plan in order to bring them in smoothly. thanks, --larry On Thu, Aug 7, 2014 at 12:55 PM, larry mccay larry.mc...@gmail.com wrote: We can certainly consider that, Ed! The plan is to branch for the 0.5.0 release around the end of the month. If we

[NOTICE] Branching for Knox 0.5.0 Release

All, We will be branching for 0.5.0 at the end of today (9/2) if there are no objections. Once that is done, all changes for 0.5.0 will need to be made first on master and then picked into the 0.5.0 branch. Let me know if you have any questions or concerns about this. --larry

Installation of Demo Config a Manual Step in 0.5.0

All - In order to describe the installation of a production deployment vs a demo deployment, I would like to separate the out-of-the-box install from demo setup. Currently, when you unpack the knox archive, the conf directory includes a couple artifacts that are demo specific and are not likely

Re: Installation of Demo Config a Manual Step in 0.5.0

? On 9/2/14 11:11 AM, larry mccay wrote: All - In order to describe the installation of a production deployment vs a demo deployment, I would like to separate the out-of-the-box install from demo setup. Currently, when you unpack the knox archive, the conf directory includes a couple

[ANNOUNCEMENT] Knox has Branched for 0.5.0 Release

Everyone - We have officially branched for the 0.5.0 release and will require commits to both master and to v0.5.0 for every change that needs to be in the 0.5.0 release. An easy way to do this is by committing to master then cherry-picking back to 0.5.0. You will notice that master now builds

Elimination of Sun classes in Cerificate Generation

All - Pascal Oliva has filed KNOX-242 and provided a patch contribution for replacing the use of the sun/oracle proprietary classes with the use of the Bouncy Castle library. With reported plans from oracle to limit or block access to the old sun classes it seems that we need to make a move here

Re: Elimination of Sun classes in Cerificate Generation

, Sep 15, 2014 at 2:06 PM, larry mccay larry.mc...@gmail.com wrote: All - Pascal Oliva has filed KNOX-242 and provided a patch contribution for replacing the use of the sun/oracle proprietary classes with the use of the Bouncy Castle library. With reported plans from oracle to limit

Re: Elimination of Sun classes in Cerificate Generation

scripting around that for standing up a test/demo environment easily. On Mon, Sep 15, 2014 at 5:19 PM, larry mccay larry.mc...@gmail.com wrote: I've considered this, Vinay. I'm not sure the value of providing a sun based implementation given that the classes are going away

Re: Elimination of Sun classes in Cerificate Generation

without any tools for changing the keystores or master password etc. On Mon, Sep 15, 2014 at 5:43 PM, larry mccay larry.mc...@gmail.com wrote: Another alternative would be to remove the auto generation of a self-signed cert from the server runtime and require the use of the admin's favorite key

Re: KNOX-424: Fix maven groupId and 0.5.0?

+1 On Tue, Sep 16, 2014 at 10:38 PM, Kevin Minder kevin.min...@hortonworks.com wrote: Hi Everyone, I've made the change in master to switch the groupId in all of the pom.xml files from org.apache.hadoop to org.apache.knox. See https://issues.apache.org/jira/browse/KNOX-424 The question

[VOTE] Release Apache Knox 0.5.0

All - A candidate for the Apache Knox 0.5.0 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.5.0/ The release candidate is a zip archive of the sources in: https://git-wip-us.apache.org/repos/asf/knox.git Branch v0.5.0 (git checkout -b v0.5.0) The SHA1 checksum of

Re: [jira] [Commented] (KNOX-414) WebHDFS HA enablement in web.xml is sensitive to order of context listeners

If this is a blocker for 0.5.0 then we should cancel the current vote for 0.5.0 rc0. On Wed, Sep 24, 2014 at 10:02 AM, Sumit Gupta (JIRA) j...@apache.org wrote: [

Re: [jira] [Commented] (KNOX-422) Build break with JVM IBM JAVA

] pascal oliva commented on KNOX-422: --- Larry McCay, did you run the tests in your side with KNOX-422-2.patch ? Build break with JVM IBM JAVA - Key: KNOX-422 URL: https://issues.apache.org

Building a RC for v0.5.0

All - As a heads up, I will be assembling a release candidate for a v0.5.0 release this weekend and potentially into Monday. I believe that the blocker issues have been resolved as well as a number of other minor fixes that cropped up in between the last rc and the current state. I will be

[DISCUSS] Building a RC for v0.5.0

All - As a heads up, I will be assembling a release candidate for a v0.5.0 release this weekend and potentially into Monday. I believe that the blocker issues have been resolved as well as a number of other minor fixes that cropped up in between the last rc and the current state. I will be

[DISCUSS] Building a RC for v0.5.0

All - As a heads up, I will be assembling a release candidate for a v0.5.0 release this weekend and potentially into Monday. I believe that the blocker issues have been resolved as well as a number of other minor fixes that cropped up in between the last rc and the current state. I will be

[VOTE] Release Apache Knox 0.5.0

All - A new candidate for the Apache Knox 0.5.0 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.5.0/ The release candidate is a zip archive of the sources in: https://git-wip-us.apache.org/repos/asf/knox.git Branch v0.5.0 (git checkout -b v0.5.0) The SHA1 checksum of

Re: [VOTE] Release Apache Knox 0.5.0

tests successfully. +1 Release this package as Apache Knox 0.5.0 On Sun, Oct 26, 2014 at 12:48 PM, larry mccay lmc...@apache.org wrote: All - A new candidate for the Apache Knox 0.5.0 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.5.0/ The release candidate

[DISCUSS] Next Releases

All - Now that we have delivered our 0.5.0 release, we need to consider our next couple releases. We should first consider preparing for an 0.5.1 release to accommodate any issues that crop up with the latest available release. I propose (1): creating a branch within the next day or so. This

test

testing from gmail account.

Re: [DISCUSS] Next Releases

out sooner rather than an 0.5.2. Now of course if we find some non-feature critical fixes that we want to bundle into an 0.5.2 that could make sense but not based on any cadence. On 11/7/14 12:17 PM, larry mccay wrote: All - Now that we have delivered our 0.5.0 release, we need

test

test

[VOTE] Release Apache Knox 0.5.1

A candidate for the Apache Knox 0.5.1 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.5.1/ The release candidate is a zip archive of the sources in: https://git-wip-us.apache.org/repos/asf/knox.git Branch v0.5.1 (git checkout -b v{gateway-version}) The KEYS file for

New Apache Knox Committer/PMC Member: Sumit Gupta

All - The Project Management Committee (PMC) for Apache Knox has asked Sumit Gupta to become a committer and PMC member and we are pleased to announce that they have accepted. Sumit added significantly to the 0.5.0 Apache Knox release by contributing both bug fixes and full features to the

Re: [VOTE] Release Apache Knox 0.5.1

is fixed +1 binding On Fri, Dec 5, 2014 at 8:44 AM, larry mccay lmc...@apache.org wrote: A candidate for the Apache Knox 0.5.1 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.5.1/ The release candidate is a zip archive of the sources in: https://git-wip-us.apache.org

Re: Notes for publishing releases to the Apache maven repo

Thanks! On Tue, Jan 20, 2015 at 11:40 PM, Kevin Minder kevin.min...@hortonworks.com wrote: Hi Everyone, I wanted to quickly capture my notes on publishing to the Apache Maven repo. I dumped this into the release process wiki too. I did this for 0.5.1 so this should be the last step of

Re: [jira] [Commented] (KNOX-488) If any failure during deletion of alias from a cluster , exception thrown is misleading

Good catch! Please do provide a patch. Thank you for your contributions! On Jan 21, 2015 7:58 AM, J.Andreina (JIRA) j...@apache.org wrote: [

Re: [DISCUSS] merging of branch KNOX-481

This sounds like an excellent step forward for the deployment machinery of Knox - good work! It will also provide even greater compatibility with Hadoop platform deployments. We should continue this work to define collections of versioned services as a single Hadoop platform definition -

Re: [VOTE] Release Apache Knox 0.5.1

:32 PM, larry mccay lmc...@apache.org wrote: I have downloaded the release candidate and: * checked the CHANGES file * verified the signature and hashes * built from source * run unit tests * manually tested webhdfs * manually tested webhcat * ran the wordcount example * verified

[RESULT][VOTE] Release Apache Knox 0.5.1

The vote for releasing 0.5.1 received the following votes: +1 (binding): Kevin Minder Sumit Gupta Larry McCay +1 (non-binding): none -1: none With 3 positive binding votes and no negative votes - the release vote passes. Thanks to everyone for making this release happen! --larry On Sun, Jan

Re: Does Knox do URL encoding of PUT/POST content?

Hi Dimple - I don't recall hearing of anyone with an issue like this - I think that in order to help you that I will need a bit more information: 1. What are the APIs that you have going through Knox and routing service are you using to do this with? 2. Knox doesn't typically do redirection to

Re: [DISCUSS] Release 0.6.0 Branching Time?

. In either case, I can always double merge/cherry pick, so no big deal. Let¹s branch. Sumit. On 3/22/15, 11:27 AM, larry mccay lmc...@apache.org wrote: All - We have a number of interesting features in master that enhance the developer's ability to extend Apache Knox with new routing services

[DISCUSS] Dispatch and Trusted Proxy Support

All - I think we need to determine the best way forward for our trusted proxy support. Today, we have the details of the various ?doAs= vs ?username= parameters in the identity assertion httpServletRequestWrapper. Some services are coming into the fold with new or just plain different query

Jenkins Failures

All - I see that KNOX-584 was filed by Zac to address this but I wanted to make sure that everyone is aware that we have some instability in the jenkins builds. See: https://builds.apache.org/job/Knox-master-verify/701/ We have 3 failures there: 1. in CLIServiceTest - covered by KNOX-584:

Re: Jenkins Failures

+1 :) On Wed, Aug 12, 2015 at 12:16 PM, Sumit Gupta sumit.gu...@hortonworks.com wrote: Agreed on XForwardHeaders related tests. I can take those on and I will file a JIRA to track it. Thanks Zac for taking the CLIServiceTest failure. Sumit. On 8/12/15, 12:11 PM, larry mccay lmc

Re: [jira] [Commented] (KNOX-564) NPE for Topology with no Providers Confgured

Key: KNOX-564 URL: https://issues.apache.org/jira/browse/KNOX-564 Project: Apache Knox Issue Type: Bug Reporter: Larry McCay Assignee: Larry McCay Fix For: 0.7.0 Deploying a topology

Re: Dealing with github pull requests

Works for me. On Tue, Nov 10, 2015 at 1:46 PM, Kevin Minder wrote: > Some of you might not be aware that we have an github mirror at > https://github.com/apache/knox > > So far we have’t really done much with it but I see that other Apache > projects use their

Re: pac4j and Apache Knox

; topology file you were attempting to configure it as an provider with > role > > authentication. > > > > > > > > > > On 11/10/15, 11:32 AM, "larry mccay" <lmc...@apache.org> wrote: > > > > >Let's get you past the error that y

Re: pac4j and Apache Knox

t actually defines the classpath of the final packaged server. If you > take a look at that you will see it references all of the providers that > are intended to be included by default. Try adding yours to the > dependencies. > > > > > On 11/12/15, 7:49 AM, "larry mccay" &

Re: pac4j and Apache Knox

gt; > Currently, I hardcoded a FacebookClient for Facebook authentication, but we > should be able to pass the appropriate client like Facebook or SAML. > Basically, we could do that using filter properties: facebook.key + > facebook.secret means we use Facebook authentication with the ap

Re: [DISCUSSION] WebSSO Service Resource Path

. On Tue, Nov 3, 2015 at 2:00 PM, larry mccay <larry.mc...@gmail.com> wrote: > Good point... > > So, we couldn't have admin and knoxsso APIs in the same topology. > We could have other fully qualified services/URLs in the same topology > though - like WEBHDFS. > > Thi

Re: [DISCUSSION] WebSSO Service Resource Path

on has a service with a resource for WebSSO flows > for browsers/cookies. Right? > > > On 11/3/15, 7:36 AM, "larry mccay" <lmc...@apache.org> wrote: > > >inline... > > > > > >On Mon, Nov 2, 2015 at 11:31 PM, Kevin Minder < > kevin.min...@horton

Re: [DISCUSSION] WebSSO Service Resource Path

this - thoughts? On Tue, Nov 3, 2015 at 9:49 AM, larry mccay <larry.mc...@gmail.com> wrote: > Agreed. > > I'm not sure that you would name your topology that way if you intended to > use it for REST though. > We could certainly create credential collectors in the client sh

Re: pac4j and Apache Knox

ents we integrate with certainly > don’t use it. So from that perspective, direct use of log4j if that is > your choice isn’t going to cause any major problems. > > > > > > On 11/13/15, 8:40 AM, "larry mccay" <lmc...@apache.org> wrote: > > >Hi Jérôme - > >

Re: pac4j and Apache Knox

ents available for > JWT tokens and cookies? And how? > > > 5) Logs: I see in every descriptor the use of Messages and MessagesFactory: > I can't use log4j directly, can I? What's the expected benefits using this > Messages layer? > > > Thanks. > Best regards, > Jérôm

Re: [DISCUSS] KNOX-593 and custom HttpClient creation

This strategy sounds great to me. Abstracting the config object makes sense as well - even if just making it a factoryContext type of thing would be better. I'm not sure that we need gateway level configurability though a default in the service definition would be good. Perhaps, the ability to

Re: pac4j and Apache Knox

tonworks.com/nexus/content/groups/public/ > > Does this repository have access to the remote Snapshots Sonatype repo? > > > > 2015-12-02 16:16 GMT+01:00 larry mccay <larry.mc...@gmail.com>: > > > hmmm - I used: > > > > mvn clean install -DskipTests=

Re: pac4j and Apache Knox

gateway-provider-security-pac4j doesn't build - do you have a pending change for your pom.xml or something? On Wed, Dec 2, 2015 at 7:02 AM, larry mccay <larry.mc...@gmail.com> wrote: > Hi Jérôme - > > Yes, that is the flow that I imagined as I walked through it yesterda

Re: pac4j and Apache Knox

4a0b285078036R123 > > If you use Ant for the build, there is maybe a glitch to find the Sonatype > Maven repo. > > Thanks. > Best regards, > Jérôme > > > 2015-12-02 16:06 GMT+01:00 larry mccay <larry.mc...@gmail.com>: > > > Oh - do I need to build j2e-pac4 lo

Re: pac4j and Apache Knox

Wed, Dec 2, 2015 at 10:05 AM, larry mccay <larry.mc...@gmail.com> wrote: > gateway-provider-security-pac4j doesn't build - do you have a pending > change for your pom.xml or something? > > On Wed, Dec 2, 2015 at 7:02 AM, larry mccay <larry.mc...@gmail.com> wrote:

Re: pac4j and Apache Knox

that handle it. This is quite cool, Jérôme! On Wed, Dec 2, 2015 at 10:41 AM, larry mccay <larry.mc...@gmail.com> wrote: > That was it - thanks! > > On Wed, Dec 2, 2015 at 10:20 AM, Jérôme LELEU <lel...@gmail.com> wrote: > >> This is my exact command line: mvn -Prelease clean

Re: pac4j and Apache Knox

Jérôme - If you would like to add that change as part of your patch or as a separately filed JIRA to fix a bug that would certainly be welcomed. Otherwise, I can do it. Let me know. thanks, --larry On Wed, Dec 2, 2015 at 11:44 AM, larry mccay <larry.mc...@gmail.com> wrote: > Oka

Re: pac4j and Apache Knox

Fixed in https://issues.apache.org/jira/browse/KNOX-636. On Wed, Dec 2, 2015 at 12:42 PM, larry mccay <larry.mc...@gmail.com> wrote: > Sure - I can file a JIRA and commit a fix. > > The secret generation should be done in one instance and replicated across > others. > This r

Re: pac4j and Apache Knox

Javadoc. After that, you can review the pull request more > completely. > > What do you expect for the documentation? > > Notice that pac4j dependencies are still snapshots, but they will be > released in a week or two. > > Thanks. > Best regards, > Jérôme

Re: pac4j and Apache Knox

oc. After that, you can review the pull request more > completely. > > What do you expect for the documentation? > > Notice that pac4j dependencies are still snapshots, but they will be > released in a week or two. > > Thanks. > Best regards, > Jérôme > > > 20

Re: pac4j and Apache Knox

4j versions in Knox to > benefit from the new feature. > The good thing is that if someone related to the CAS server does the same > thing for CAS (in pac4j), you will automatically get it when you'll upgrade > pac4j. > > To go even further, replacing LDAP Shiro authentication is jus

Re: Branch for 0.7.0

Thanks, Sumit. Looking forward to the 0.7.0 release! On Tue, Dec 8, 2015 at 4:30 PM, sumit gupta wrote: > Hi everyone, > > A v0.7.0 branch was created today from master in order to stabilize > the code base in preparation for the next release. There have been a > significant

Re: pac4j and Apache Knox

knox, start in debug, start > the debugger in your favorite IDE, call: > https://127.0.0.1:8443/gateway/sandbox/webhdfs/v1/tmp?op=LISTSTATUS. The > login must be the same as the password on the CAS server (an online one). > Then a breakpoint in the Pac4jIdentityAdapter line 63 is a

Re: pac4j and Apache Knox

s the encrypted cookies are shared. > > Thanks. > Best regards, > Jérôme > > > > > 2015-11-25 14:18 GMT+01:00 larry mccay <larry.mc...@gmail.com>: > > > inline... > > > > On Wed, Nov 25, 2015 at 5:04 AM, Jérôme LELEU <lel...@gmail.com&

Re: Knox SSO in Openstack Environments

of the hostname and use the remainder (with leading dot) as the cookie domain. Tests will be updated to ensure the expected behavior. This may require folks that are working from master to need additional config to get their previous behavior. On Mon, Nov 23, 2015 at 4:45 PM, larry mccay <lmc...@apache.

[DISCUSS] CTR, Requiring Patch Attachments and Cool Off Period

All - Lars provided the Knox community with some feedback into our development practices and JIRA usage [1]. I wanted to bring up a DISCUSS thread on how our CTR policy may or may not relate to a couple points made in his feedback. In particular: 1. Whether a CTR based policy should require

Re: Development practices / JIRA usage

Thank you for your feedback, Lars. Knox does follow a CTR policy for committers in Knox which is why you see much of what you mention. KNOX-640 was communicated on the dev@ list [1] to solicit feedback and opinions. We watch the commits to the Apache git repository via the dev@ list and easily

Re: pac4j and Apache Knox

o this version 0.7.0 (dependency on the 0.7.0-SNAPSHOT > parent version). > > Just let me know if everything is ok and when it's goind to be merged. > > Thanks. > Best regards, > Jérôme > > > > > 2015-12-04 14:20 GMT+01:00 larry mccay <larry.mc...@gmail.com>: >

Re: Development practices / JIRA usage

Terrific! I think that your points about the git web interface and stale links are good ones - please make sure that you add them to the DISCUSS thread. On Fri, Dec 11, 2015 at 9:30 AM, Lars Francke wrote: > Sorry, saw your new thread too late. Will reply there

Re: [DISCUSS] Capturing metrics in Knox

I like this idea. In addition to dropwizard, I think we need to rule out leveraging what is used in hadoop common. I don't know how generic it is but do know that there is a JMXServlet that can be used to expose the metrics in a REST-like way. Leveraging hadoop common where possible is something

[DISCUSS] Preparing for 0.7.0 Release

Knox dev's - We need to start locking down the release for 0.7.0. In preparation of this, Sumit created a branch a week or so ago and we should start considering the creation of a release candidate. I believe that I have to update the CHANGES file with an entry for a patch that I cherry picked

Re: [DISCUSS] Preparing for 0.7.0 Release

> > > On 12/15/15, 4:29 PM, "larry mccay" <lmc...@apache.org> wrote: > > >I will take on the task of merging the lists and prepare a patch for that > >immediately. > > > >On Tue, Dec 15, 2015 at 4:27 PM, Kevin Minder < > kevin.min...@hor

Re: pac4j and Apache Knox

> Hi, > > No problem. It can go into a version 0.8.0 if needed. The truth is that > there is only one change outside the new pac4j module, so I think risks are > extremly limited. > > Just let met know. > > Thanks. > Best regards, > Jérôme > > > 2015-12-11 14

Re: [DISCUSS] Preparing for 0.7.0 Release

r" <kevin.min...@hortonworks.com> > wrote: > > >Hi Everyone, > >I’ve practiced through the release mechanics so I’ll volunteer for be the > release manager for 0.7.0 assuming we all agree to move forward. > >Kevin. > > > > > > > > >

Re: [DISCUSS] Preparing for 0.7.0 Release

errr - rc1 that is... On Thu, Dec 17, 2015 at 2:14 PM, larry mccay <lmc...@apache.org> wrote: > Great! > > We can start a VOTE for releasing rc0 then? > > > On Thu, Dec 17, 2015 at 2:03 PM, Kevin Minder < > kevin.min...@hortonworks.com> wrote: > >>

Re: [DISCUSS] Preparing for 0.7.0 Release

Okay - CHANGES has been updated in both master and v0.7.0. We should be ready for a release candidate now. On Tue, Dec 15, 2015 at 4:29 PM, larry mccay <lmc...@apache.org> wrote: > I will take on the task of merging the lists and prepare a patch for that > immediately. > > On

Re: [DISCUSS] Preparing for 0.7.0 Release

> KNOX-532: Update root pom.xml maven-compiler-plugin configuration. > KNOX-531 fix extraneous audit entries and add additional principal mapping > test > KNOX-529 - second attempt to get all usecases - missed wildcard plus > explicit mappings before > KNOX-530 fixed oozie rewrite rules to ha

Re: Issue with WebHDFS Kerberos authentication, when running with JVM-1.7.0-SR1 or above

Hi Ravi - I don't see any indication that you are using Knox in what you have attached. I think that you need to move to the hadoop dev list. I can tell you that I haven't encountered this particular issue or even seen that error for other reasons before. I'll keep an eye out on the hadoop list

Re: pac4j and Apache Knox

sted using some online IdP like Okta, > TestShib, OpenFeide, Ssocircle... > > > 2016-01-05 17:32 GMT+01:00 larry mccay <larry.mc...@gmail.com>: > > > Great - thanks for that pointer! > > > > I will take a look at that and help drive the release related

Re: [DISCUSS] Preparing for 0.8.0 Release

Unfortunately, I forgot to list the [1] thread that is in the JIRA for https://issues.apache.org/jira/browse/KNOX-641. This is where it was proposed that we defer the pac4j work to 0.8.0. Sorry for any confusion. On Tue, Jan 5, 2016 at 3:13 PM, larry mccay <lmc...@apache.org> wrote:

Re: [DISCUSS] CTR, Requiring Patch Attachments and Cool Off Period

Hi Lars - Thanks for bumping this thread again - we do need to bring it to a close. I certainly agree with Kevin on CTR as the current and well working policy for this project. @Kevin - I believe that we need to also consider the cool off period yet. I do not believe that external contributions

Re: [DISCUSS] CTR, Requiring Patch Attachments and Cool Off Period

t getting lost in swarm of > JIRA email. > > In short, I would prefer a single straightforward policy of CTR and other > means of raising awareness and soliciting input. > > > On 1/7/16, 8:40 AM, "larry mccay" <lmc...@apache.org> wrote: > > >I am not lookin

Re: [jira] [Comment Edited] (KNOX-641) Support CAS / OAuth / OpenID C / SAML protocols using pac4j

SAML - unless you already have tested SAML with Knox. I am going to try latest pac4j for OpenID now. On Fri, Jan 8, 2016 at 1:54 PM, Jérôme Leleu (JIRA) wrote: > > [ >

Re: [jira] [Commented] (KNOX-641) Support CAS / OAuth / OpenID C / SAML protocols using pac4j

Awesome - thanks [~jleleu]! I did get the google openid connect to work with the latest pac4j too! We need to determine the best way to address the id instead of username issue before this can be used to access hadoop resources though. I'll need to put some thought into that. On Fri, Jan 8,

Re: [DISCUSS] An Administrator UI for Knox

tps://host:port/gatewaypath/file.html). > > ________ > From: larry mccay <lmc...@apache.org> > Sent: Wednesday, December 23, 2015 7:43 AM > To: dev@knox.apache.org > Subject: Re: [DISCUSS] An Administrator UI for Knox > > Hi Zac - > > I've taken a quick look at

Re: [DISCUSS] An Administrator UI for Knox

we targeting this UI at administrators or we targeting to end > using APIs that are routed through Knox? > > On Fri, Dec 18, 2015 at 3:06 PM, larry mccay <larry.mc...@gmail.com> > wrote: > > > Balaji - > > > > 1. Not all shops use Ambari > > 2. We can

  1   2   3   4   5   6   7   8   9   10   >