HADOOP-13580. If user is unauthorized, log "unauthorized" instead of "Invalid signed text:". Contributed by Wei-Chiu Chuang.
Project: http://git-wip-us.apache.org/repos/asf/hadoop/repo Commit: http://git-wip-us.apache.org/repos/asf/hadoop/commit/f6f3a447 Tree: http://git-wip-us.apache.org/repos/asf/hadoop/tree/f6f3a447 Diff: http://git-wip-us.apache.org/repos/asf/hadoop/diff/f6f3a447 Branch: refs/heads/HADOOP-12756 Commit: f6f3a447bf3b2900a2e9a0615ad9877f9310e062 Parents: cd099a6 Author: Wei-Chiu Chuang <weic...@apache.org> Authored: Fri Sep 16 14:53:09 2016 -0700 Committer: Wei-Chiu Chuang <weic...@apache.org> Committed: Fri Sep 16 14:53:30 2016 -0700 ---------------------------------------------------------------------- .../security/authentication/server/AuthenticationFilter.java | 3 +++ 1 file changed, 3 insertions(+) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/hadoop/blob/f6f3a447/hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/server/AuthenticationFilter.java ---------------------------------------------------------------------- diff --git a/hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/server/AuthenticationFilter.java b/hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/server/AuthenticationFilter.java index 0a9b8b5..5262fdc 100644 --- a/hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/server/AuthenticationFilter.java +++ b/hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/server/AuthenticationFilter.java @@ -438,6 +438,9 @@ public class AuthenticationFilter implements Filter { for (Cookie cookie : cookies) { if (cookie.getName().equals(AuthenticatedURL.AUTH_COOKIE)) { tokenStr = cookie.getValue(); + if (tokenStr.isEmpty()) { + throw new AuthenticationException("Unauthorized access"); + } try { tokenStr = signer.verifyAndExtract(tokenStr); } catch (SignerException ex) { --------------------------------------------------------------------- To unsubscribe, e-mail: common-commits-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-commits-h...@hadoop.apache.org