[
https://issues.apache.org/jira/browse/RANGER-5588?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18085251#comment-18085251
]
Chinmay N Hegde commented on RANGER-5588:
-----------------------------------------
Merged into apache master :
[https://github.com/apache/ranger/commit/425605142d4800bc2cdfb72ff653c838b900f76f]
> Remove cookie based JWT authentication from JWT files
> -----------------------------------------------------
>
> Key: RANGER-5588
> URL: https://issues.apache.org/jira/browse/RANGER-5588
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Reporter: Chinmay N Hegde
> Assignee: Chinmay N Hegde
> Priority: Major
> Time Spent: 20m
> Remaining Estimate: 0h
>
> After the patch https://issues.apache.org/jira/browse/RANGER-5539 RANGER-5539
> : Add Authorisation Check for doAsUser Parameter
> Ranger admin login Via Knox proxy is failing and it should be fixed.
> It was failing because the knox request having hadoop-jwt cookie was passing
> to RangerJwtAuthFilter, But it shouldn't so this fix will handle this
> Also according to JWT RFC, cookie based header is not used for JWT.
> [https://datatracker.ietf.org/doc/html/rfc6750]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
