Re: [VOTE] Release Apache Knox 0.12.0

Thanks for the +1 and testing the release Kevin Risden! On 3/7/17, 10:24 AM, "Kevin Risden" wrote: >+1 (non-binding) > >* Updated https://github.com/risdenk/knox_solr_testing to use 0.12.0 RC >* Verified that Knox Solr service definition was able to connect to

Re: [VOTE] Release Apache Knox 0.12.0 RC2

+1 (non-binding) * Updated https://github.com/risdenk/knox_solr_testing to use 0.12.0 RC2 * Verified that Knox Solr service definition was able to connect to Kerberized Solr * Verified both API and UI * Verified basic auth through LDAP works Kevin Risden On Thu, Mar 16, 2017 at 11:51 AM,

Re: [VOTE] Release Apache Knox 0.12.0 RC2

+1 (binding) Verified following: * Downloaded and built from source (with Java 1.8.0_101) * Checked LICENSE and NOTICE files * Verified GPG/MD5/SHA signatures for Knox and Knoxshell release packages * Installed pseudo-distributed instance (Mac OS X ) * Ran through knox tests * Checked websocket

Re: [VOTE] Release Apache Knox 0.12.0 RC2

+1 binding * Checked NOTICE, LICENSE files - NOTICE file needs updated copyright not going block release - filed https://issues.apache.org/jira/browse/KNOX-908 - if any other issues are found then KNOX-908 must go into the next rc as well * Checked signatures * Built from source and ran

[VOTE] Release Apache Knox 0.12.0 RC2

A candidate for the Apache Knox 0.12.0 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.12.0/ The release candidate is a zip archive of the sources in: https://git-wip-us.apache.org/repos/asf/knox.git Branch v0.12.0 (git checkout -b v0.12.0) The KEYS file for

Re: [CANCEL] [VOTE] Release Apache Knox 0.12.0

We should default the variable to null and only set it conditionally. This will allow us to fail securely rather than insecurely. This may have been introduced when I had to merge the knoxtoken branch into that change. It was a troublesome merge as I recall. On Wed, Mar 8, 2017 at 1:53 PM, Sumit

[CANCEL] [VOTE] Release Apache Knox 0.12.0

As per the discussion below the VOTE for release is being cancelled. Sumit. On 3/8/17, 1:51 PM, "Sumit Gupta" wrote: >Thanks for the catch Larry and Vincent. This may have been a merge issue >on my part as well. In any case I agree that the release cannot go out

Re: [VOTE] Release Apache Knox 0.12.0

@larry You are right, in the Hadoop class it should be: HostnameVerifier hostnameVerifier = NoopHostnameVerifier.INSTANCE; TrustStrategy trustStrategy = TrustSelfSignedStrategy.INSTANCE; if (clientContext.connection().secure()) { hostnameVerifier =

Re: [VOTE] Release Apache Knox 0.12.0

Unfortunately, I have found what I view as a showstopper. We had a regression in the knoxshell with respect to requiring proper trust of the cert presented by the gateway. Somewhere along the line the TrustSelfSignedStrategy was added back and self-signed certs now get a free pass. This needs to

Re: [VOTE] Release Apache Knox 0.12.0

+1 (non-binding) * Updated https://github.com/risdenk/knox_solr_testing to use 0.12.0 RC * Verified that Knox Solr service definition was able to connect to Kerberized Solr * Verified both API and UI * Verified basic auth through LDAP works Kevin Risden On Mon, Mar 6, 2017 at 9:37 AM, Sandeep

Re: [VOTE] Release Apache Knox 0.12.0

Thanks Sumit for setting up the release ! +1 (binding) * Downloaded and built from source (with Java 1.8.0_101) * Checked LICENSE and NOTICE files * Verified GPG/MD5/SHA signatures * Installed pseudo-distributed instance (Mac OS X ) * Ran through knox tests * Checked websocket functionality *

[VOTE] Release Apache Knox 0.12.0

A candidate for the Apache Knox 0.12.0 release is available at: https://dist.apache.org/repos/dist/dev/knox/knox-0.12.0/ The release candidate is a zip archive of the sources in: https://git-wip-us.apache.org/repos/asf/knox.git Branch v0.12.0 (git checkout -b v0.12.0) The KEYS file for