[
https://issues.apache.org/jira/browse/HADOOP-9421?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13689763#comment-13689763
]
Daryn Sharp commented on HADOOP-9421:
-------------------------------------
bq. That is correct. BTW Client can guess the best default for initial auth
since it is the default authentication for the Cluster (e.g. Kerberos or LDAP).
Wrong. You can't guess in a heterogeneous security environment for different
services. You can't even guess which mechanism a particular service will use
for tokens.
How will you simultaneously support accessing both LDAP and KERBEROS secured
services? Or something pluggable like a SSO_TOKEN on one cluster, "normal"
TOKEN on another. And either of them might be using DIGEST-MD5 or SCRAM or
something else.
How will you guess w/o a slew of config options?
> Convert SASL to use ProtoBuf and add lengths for non-blocking processing
> ------------------------------------------------------------------------
>
> Key: HADOOP-9421
> URL: https://issues.apache.org/jira/browse/HADOOP-9421
> Project: Hadoop Common
> Issue Type: Sub-task
> Affects Versions: 2.0.3-alpha
> Reporter: Sanjay Radia
> Assignee: Daryn Sharp
> Priority: Blocker
> Attachments: HADOOP-9421.patch, HADOOP-9421.patch, HADOOP-9421.patch,
> HADOOP-9421.patch, HADOOP-9421.patch, HADOOP-9421.patch, HADOOP-9421.patch,
> HADOOP-9421.patch, HADOOP-9421-v2-demo.patch
>
>
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
