[
https://issues.apache.org/jira/browse/YARN-1946?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13972959#comment-13972959
]
Thomas Graves commented on YARN-1946:
-------------------------------------
{quote}
We've replaced the normal AmFilter with one that doesn't proxy under ws/*,
looking into is code
{quote}
sorry I don't understand what you are saying here? You are saying your
application has? If it doesn't proxy it doesn't really follow yarn security
rules?
You are correct that the YarnConfiguration is public, but the
getProxyHostAndPort and now getProxyHostsAndPortsForAmFilter handle other
things for you. https, RM HA, etc...
> need Public interface for WebAppUtils.getProxyHostAndPort
> ---------------------------------------------------------
>
> Key: YARN-1946
> URL: https://issues.apache.org/jira/browse/YARN-1946
> Project: Hadoop YARN
> Issue Type: Sub-task
> Components: api, webapp
> Affects Versions: 2.4.0
> Reporter: Thomas Graves
> Priority: Critical
>
> ApplicationMasters are supposed to go through the ResourceManager web app
> proxy if they have web UI's so they are properly secured. There is currently
> no public interface for Application Masters to conveniently get the proxy
> host and port. There is a function in WebAppUtils, but that class is
> private.
> We should provide this as a utility since any properly written AM will need
> to do this.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
