[
https://issues.apache.org/jira/browse/YARN-6457?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16192262#comment-16192262
]
Vlad Rozov commented on YARN-6457:
----------------------------------
If passed {{conf}} is not {{null}}, should not the following code handle your
case?
{code}
if (conf != null) {
sslConf.addResource(conf);
}
{code}
How HDFS HA + SSL + Hadoop credential store worked prior to YARN-4562 was fixed?
The issue is that prior to this and YARN-4562 fix,
{{"ssl.server.truststore.location"}} and other properties that are specific to
{{ssl-server.xml}} were ignored if set in {{yarn-site.xml}} and only loaded
from {{ssl-server.xml}}. Whether it was an intentional behavior or a bug, needs
to be discussed. The behavior should not change simply as a side effect of this
JIRA fix.
> Allow custom SSL configuration to be supplied in WebApps
> --------------------------------------------------------
>
> Key: YARN-6457
> URL: https://issues.apache.org/jira/browse/YARN-6457
> Project: Hadoop YARN
> Issue Type: Improvement
> Components: webapp, yarn
> Reporter: Sanjay M Pujare
> Assignee: Sanjay M Pujare
> Fix For: 2.9.0, 2.7.4, 3.0.0-alpha4, 2.8.2
>
> Attachments: YARN-6457.00.patch, YARN-6457.01.patch
>
> Original Estimate: 96h
> Remaining Estimate: 96h
>
> Currently a custom SSL store cannot be passed on to WebApps which forces the
> embedded web-server to use the default keystore set up in ssl-server.xml for
> the whole Hadoop cluster. There are cases where the Hadoop app needs to use
> its own/custom keystore.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
