[ https://issues.apache.org/jira/browse/YARN-575?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13644964#comment-13644964 ]
Siddharth Seth commented on YARN-575: ------------------------------------- I'm fine going the route of getting container status from the RM - when required. Assuming we keep the NM equivalent though, for AMs to use. The AppTokens will be used for Authentication as well as Authorization for getContainerStatus calls ? > ContainerManager APIs should be user accessible > ----------------------------------------------- > > Key: YARN-575 > URL: https://issues.apache.org/jira/browse/YARN-575 > Project: Hadoop YARN > Issue Type: Sub-task > Components: nodemanager > Affects Versions: 2.0.4-alpha > Reporter: Siddharth Seth > Assignee: Vinod Kumar Vavilapalli > Priority: Critical > > Auth for ContainerManager is based on the containerId being accessed - since > this is what is used to launch containers (There's likely another jira > somewhere to change this to not be containerId based). > What this also means is the API is effectively not usable with kerberos > credentials. > Also, it should be possible to use this API with some generic tokens > (RMDelegation?), instead of with Container specific tokens. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira