[
https://issues.apache.org/jira/browse/YARN-707?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13751428#comment-13751428
]
Jason Lowe commented on YARN-707:
---------------------------------
bq. Would it be possible to continue using the app attempt object to store all
the app attempt related information including the master key for the app?
Ah, good. That's the same line of thinking I was pursuing. The patch I'm
working on stores the per-app-attempt master key in the same way that the
client token used to be stored, as part of the credentials for the app attempt.
I'm wrapping up some manual tests and will post the patch soon for more
concrete discussions on the approach.
> Add user info in the YARN ClientToken
> -------------------------------------
>
> Key: YARN-707
> URL: https://issues.apache.org/jira/browse/YARN-707
> Project: Hadoop YARN
> Issue Type: Improvement
> Reporter: Bikas Saha
> Assignee: Jason Lowe
> Fix For: 3.0.0, 2.1.1-beta
>
> Attachments: YARN-707-20130822.txt
>
>
> If user info is present in the client token then it can be used to do limited
> authz in the AM.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
