[
https://issues.apache.org/jira/browse/HADOOP-10895?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14195014#comment-14195014
]
Yongjun Zhang commented on HADOOP-10895:
----------------------------------------
Hi @tucu,
Thanks for answering Robert's question. The fallback default introduced for
HADOOP-9698 is false:
http://mail-archives.apache.org/mod_mbox/hadoop-common-commits/201307.mbox/%[email protected]%3E
Which means, if we are going to use the same config property, the default will
be false (changing from the hardcoded default).
Do we need to introduce a different config property for this? It seems
consistent to have same default for this one and hadoop-9698.
BTW, would you please also address my questions to you in my last comment? I
tried to address Robert's comment #4, that's what made me to move from rev3 to
rev4. Sounds rev3 is close to what you are suggesting. Thanks a lot.
> HTTP KerberosAuthenticator fallback should have a flag to disable it
> --------------------------------------------------------------------
>
> Key: HADOOP-10895
> URL: https://issues.apache.org/jira/browse/HADOOP-10895
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 2.4.1
> Reporter: Alejandro Abdelnur
> Assignee: Yongjun Zhang
> Priority: Blocker
> Attachments: HADOOP-10895.001.patch, HADOOP-10895.002.patch,
> HADOOP-10895.003.patch, HADOOP-10895.004.patch
>
>
> Per review feedback in HADOOP-10771, {{KerberosAuthenticator}} and the
> delegation token version coming in with HADOOP-10771 should have a flag to
> disable fallback to pseudo, similarly to the one that was introduced in
> Hadoop RPC client with HADOOP-9698.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
