[ https://issues.apache.org/jira/browse/HADOOP-8779?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13482155#comment-13482155 ]
Kan Zhang commented on HADOOP-8779: ----------------------------------- Just to clarify, IMO, a cluster may be configured to use SIMPLE + SIMPLE or SIMPLE + TOKEN, but not both at the same time. I don't see a use case for both at the same time. On the other hand, I do see the value of SIMPLE + SIMPLE without the overhead of tokens (i.e., without simultaneously enabling SIMPLE + TOKEN). > Use tokens regardless of authentication type > -------------------------------------------- > > Key: HADOOP-8779 > URL: https://issues.apache.org/jira/browse/HADOOP-8779 > Project: Hadoop Common > Issue Type: New Feature > Components: fs, security > Affects Versions: 3.0.0, 2.0.2-alpha > Reporter: Daryn Sharp > Assignee: Daryn Sharp > > Security is a combination of authentication and authorization (tokens). > Authorization may be granted independently of the authentication model. > Tokens should be used regardless of simple or kerberos authentication. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira