Re: Webhdfs Proxy user setting

Tue, 13 May 2014 13:56:45 -0700

Would it be possible for you to send us your core-site.xml. I'm wondering if you are using some variant of AuthenticatorHandler (i.e. core-site.xml hadoop.http.authentication.type ) that we haven't tested with. 

On 5/13/14 4:03 PM, Roshan Punnoose wrote:
Sure thing. The version we are testing against is "2.2.0.2.0.6.0-101" which came with HDP. 


Yup, I modified that constant and it worked perfectly. I was surprised 
too that this was the case. However, in the docs it looks like webhdfs 
is expecting 'doas', all lowercase. I hope this change will not affect 
other http endpoints. (Oozie?)





On Tue, May 13, 2014 at 3:53 PM, larry mccay <[email protected] 
<mailto:[email protected]>> wrote:


    Hi Roshan -

    The constant can be found in:
    
./gateway-provider-identity-assertion-pseudo/src/main/java/org/apache/hadoop/gateway/identityasserter/filter/IdentityAsserterHttpServletRequestWrapper.java

    But...

    I'd like to understand why you are seeing this behavior.

    Can you provide more details about your deployment?

    Specifically, the version of wehdfs you are running would be great?

    We have done pretty extensive testing with secure clusters and
    should have seen this issue if it existed on the versions that we
    were using.

    thanks!

    --larry


    On Tue, May 13, 2014 at 2:05 PM, Roshan Punnoose
    <[email protected] <mailto:[email protected]>> wrote:

        I'm running knox 0.4.0, and I noticed that the webhdfs proxy
        query parameter is 'doAs'. However, my httpfs (webhdfs) server
        does not recognize that parameter, but requires that it be
        'doas'. The docs also mention this as well.
        
(http://hadoop.apache.org/docs/r2.2.0/hadoop-project-dist/hadoop-hdfs/WebHDFS.html#Proxy_Users)


        Has anyone else ran into this issue? Is it a simple fix in the
        codebase, I did a search for 'doAs' and did not seem to find
        anything.

        Roshan






--
CONFIDENTIALITY NOTICE

NOTICE: This message is intended for the use of the individual or entity to 
which it is addressed and may contain information that is confidential, 
privileged and exempt from disclosure under applicable law. If the reader 
of this message is not the intended recipient, you are hereby notified that 
any printing, copying, dissemination, distribution, disclosure or 
forwarding of this communication is strictly prohibited. If you have 
received this communication in error, please contact the sender immediately 
and delete it from your system. Thank You.





















					Reply via email to