Zhijie Shen created HADOOP-11215: ------------------------------------ Summary: DT management ops in DelegationTokenAuthenticatedURL assume the authenticator is KerberosDelegationTokenAuthenticator Key: HADOOP-11215 URL: https://issues.apache.org/jira/browse/HADOOP-11215 Project: Hadoop Common Issue Type: Bug Reporter: Zhijie Shen
Here's the code in get/renew/cancel DT: {code} return ((KerberosDelegationTokenAuthenticator) getAuthenticator()). renewDelegationToken(url, token, token.delegationToken, doAsUser); {code} It seems not to be right because PseudoDelegationTokenAuthenticator should work here as well. At least, it is inconsistent in the context of delegation token authentication, as DelegationTokenAuthenticationHandler doesn't require the authentication must be Kerberos. -- This message was sent by Atlassian JIRA (v6.3.4#6332)