[
https://issues.apache.org/jira/browse/HIVE-13418?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15311171#comment-15311171
]
Sushanth Sowmyan commented on HIVE-13418:
-----------------------------------------
([~thejas], if there is any work remaining on this bug, please open a further
new jira for it.)
> HiveServer2 HTTP mode should support X-Forwarded-Host header for
> authorization/audits
> -------------------------------------------------------------------------------------
>
> Key: HIVE-13418
> URL: https://issues.apache.org/jira/browse/HIVE-13418
> Project: Hive
> Issue Type: New Feature
> Components: Authorization, HiveServer2
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Fix For: 2.1.0
>
> Attachments: HIVE-13418.1.patch
>
>
> Apache Knox acts as a proxy for requests coming from the end users. In these
> cases, the IP address that HiveServer2 passes to the authorization/audit
> plugins via the HiveAuthzContext object only the IP address of the proxy, and
> not the end user.
> For auditing purposes, the IP address of the end user and any proxies in
> between are useful.
> HiveServer2 should pass the information from 'X-Forwarded-Host' header to
> the HiveAuthorizer plugins.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
