Jiajia Li created HADOOP-13013: ---------------------------------- Summary: Introduce Apache Kerby into Hadoop Key: HADOOP-13013 URL: https://issues.apache.org/jira/browse/HADOOP-13013 Project: Hadoop Common Issue Type: Improvement Reporter: Jiajia Li Assignee: Jiajia Li
As discussed in the mailing list, we’d like to introduce Apache Kerby into Hadoop. Apache Kerby is a Kerberos centric project and aims to provide a first Java Kerberos library that contains both client and server supports. The relevant features include: It supports full Kerberos encryption types aligned with both MIT KDC and MS AD; Client APIs to allow to login via password, credential cache, keytab file and etc.; Utilities for generate, operate and inspect keytab and credential cache files; A simple KDC server that borrows some ideas from Hadoop-MiniKDC and can be used in tests but with minimal overhead in external dependencies; A brand new token mechanism is provided, can be experimentally used, using it a JWT token can be used to exchange a TGT or service ticket; Anonymous PKINIT support, can be experientially used, as the first Java library that supports the Kerberos major extension. -- This message was sent by Atlassian JIRA (v6.3.4#6332)