[
https://issues.apache.org/jira/browse/HADOOP-10416?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13945681#comment-13945681
]
Tsz Wo Nicholas Sze commented on HADOOP-10416:
----------------------------------------------
> Why are we getting rid of the ability to disable anonymous access?
No, the patch does not getting rid of the ability to disable anonymous access.
If anonymous is enabled and there is no token in the request, the client will
get AuthenticationException("Anonymous requests are disallowed").
> If there is an expired token, PseudoAuthenticationHandler should renew it
> -------------------------------------------------------------------------
>
> Key: HADOOP-10416
> URL: https://issues.apache.org/jira/browse/HADOOP-10416
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Reporter: Tsz Wo Nicholas Sze
> Assignee: Tsz Wo Nicholas Sze
> Priority: Minor
> Attachments: c10416_20140321.patch, c10416_20140322.patch
>
>
> PseudoAuthenticationHandler currently only gets username from the "user.name"
> parameter. It should also renew expired auth token if it is available in the
> cookies.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
