zeroflag commented on PR #756: URL: https://github.com/apache/knox/pull/756#issuecomment-1560979756
@moresandeep If you omit the `hadoop-jwt` completely you can still bypass the authentication, I thought that was the goal to bypass the autnetication. However if your token expires you'll be redirected to the login page when accessing an unauthenticated path, such as /favicon. In other filters such as `HadoopAuthFilter` we check the unauthenticated path first and do an early return if the path is there. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@knox.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
