[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Chris Nauroth updated HDFS-9085:
Release Note: The output of the "hdfs fetchdt --print" command now includes
the token renewer appended to the end of the existing token information. This
change may be incompatible with tools that parse the output of the command.
(was: The output of the {{hdfs fetchdt --print}} command now includes the token
renewer appended to the end of the existing token information. This change may
be incompatible with tools that parse the output of the command.)
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Fix For: 3.0.0
>
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Chris Nauroth updated HDFS-9085:
Resolution: Fixed
Fix Version/s: 3.0.0
Release Note: The output of the {{hdfs fetchdt --print}} command now
includes the token renewer appended to the end of the existing token
information. This change may be incompatible with tools that parse the output
of the command.
Status: Resolved (was: Patch Available)
+1 for patch v002. I reviewed the test failures, and they are unrelated. The
tests pass locally on a rerun.
I have committed this to trunk. I have flagged this as a
backwards-incompatible change and entered a release note.
[~zxu], thank you for the contribution.
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Fix For: 3.0.0
>
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Attachment: (was: HDFS-9085.002.patch)
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Attachment: HDFS-9085.002.patch
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Attachment: (was: HDFS-9085.002.patch)
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Attachment: HDFS-9085.002.patch
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Attachment: HDFS-9085.002.patch
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch, HDFS-9085.002.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Chris Nauroth updated HDFS-9085:
Hadoop Flags: Incompatible change,Reviewed
Target Version/s: 3.0.0
Component/s: security
Hello [~zxu]. Sorry for the delayed response. I am +1 for a commit to trunk
only, flagging it as backwards-incompatible, and entering a release note that
describes the change in output for {{hdfs fetchdt --print}}.
Before we commit, do you think you can add a unit test to check the new
{{toString}} output?
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
> Components: security
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Description:
Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
{{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
didn't show the renewer information. It will be very useful to have renewer
information to debug security related issue. Because the renewer will be
filtered by "hadoop.security.auth_to_local", it will be helpful to show the
real renewer info after applying the rules.
was:
Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
{{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
didn't show the renewer information. It will be very useful to have renewer
information to debug security related issue. Because the renewer will be
filtered by "hadoop.security.auth_to_local", it will be helpful to show the
real renewer after applying the rules.
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Status: Patch Available (was: Open)
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer info after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Description:
Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
{{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
didn't show the renewer information. It will be very useful to have renewer
information to debug security related issue. Because the renewer will be
filtered by "hadoop.security.auth_to_local", it will be helpful to show the
real renewer after applying the rules.
was:
Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
{{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
didn't show the renewer information. It will be very useful to have renewer
information to debug security related issue.
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue. Because the renewer will be
> filtered by "hadoop.security.auth_to_local", it will be helpful to show the
> real renewer after applying the rules.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
[jira] [Updated] (HDFS-9085) Show renewer information in DelegationTokenIdentifier#toString
[
https://issues.apache.org/jira/browse/HDFS-9085?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
zhihai xu updated HDFS-9085:
Attachment: HDFS-9085.001.patch
> Show renewer information in DelegationTokenIdentifier#toString
> --
>
> Key: HDFS-9085
> URL: https://issues.apache.org/jira/browse/HDFS-9085
> Project: Hadoop HDFS
> Issue Type: Improvement
>Reporter: zhihai xu
>Assignee: zhihai xu
>Priority: Trivial
> Attachments: HDFS-9085.001.patch
>
>
> Show renewer information in {{DelegationTokenIdentifier#toString}}. Currently
> {{org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenIdentifier}}
> didn't show the renewer information. It will be very useful to have renewer
> information to debug security related issue.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
