[
https://issues.apache.org/jira/browse/HDFS-2841?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Aaron T. Myers updated HDFS-2841:
---------------------------------
Attachment: HDFS-2841-HDFS-1623.patch
Here's a patch which addresses the issue. No tests are included since it's
mostly a refactor, and it's not possible to write tests to verify that it works
with Kerberos enabled.
Testing:
I ran a Kerberized, HA-enabled pseudo cluster and verified that I could run
`hdfs haadmin -transitionToActive', etc and have it work. I also ran a few
client commands and verified that client failover continues to work with
security enabled, which is a lovely surprise. I also ran TestHAAdmin, which
passed.
> HA: HAAdmin does not work if security is enabled
> ------------------------------------------------
>
> Key: HDFS-2841
> URL: https://issues.apache.org/jira/browse/HDFS-2841
> Project: Hadoop HDFS
> Issue Type: Sub-task
> Components: ha
> Affects Versions: HA branch (HDFS-1623)
> Reporter: Aaron T. Myers
> Assignee: Aaron T. Myers
> Priority: Critical
> Attachments: HDFS-2841-HDFS-1623.patch
>
>
> Though HAServiceProtocol is indeed annotated with the {{@KerberosInfo}}
> annotation, it specifies the Common server principal, which is intended to be
> overridden at run-time with the value of the correct principal (e.g. as is
> done in MRAdmin and DFSAdmin.) We need to do something similar for HAAdmin.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
