[
https://issues.apache.org/jira/browse/YARN-575?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13644964#comment-13644964
]
Siddharth Seth commented on YARN-575:
-------------------------------------
I'm fine going the route of getting container status from the RM - when
required. Assuming we keep the NM equivalent though, for AMs to use.
The AppTokens will be used for Authentication as well as Authorization for
getContainerStatus calls ?
> ContainerManager APIs should be user accessible
> -----------------------------------------------
>
> Key: YARN-575
> URL: https://issues.apache.org/jira/browse/YARN-575
> Project: Hadoop YARN
> Issue Type: Sub-task
> Components: nodemanager
> Affects Versions: 2.0.4-alpha
> Reporter: Siddharth Seth
> Assignee: Vinod Kumar Vavilapalli
> Priority: Critical
>
> Auth for ContainerManager is based on the containerId being accessed - since
> this is what is used to launch containers (There's likely another jira
> somewhere to change this to not be containerId based).
> What this also means is the API is effectively not usable with kerberos
> credentials.
> Also, it should be possible to use this API with some generic tokens
> (RMDelegation?), instead of with Container specific tokens.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
