Jason Lowe
|
45c1f8ac8e
|
HADOOP-14687. AuthenticatedURL will reuse bad/expired session cookies. Contributed by Daryn Sharp
(cherry picked from commit c379310212 )
|
2017-08-22 16:53:51 -05:00 |
Daniel Templeton
|
1d629c95af
|
HADOOP-14666. Tests use assertTrue(....equals(...)) instead of assertEquals()
(cherry picked from commit c21c260392 )
|
2017-07-19 14:01:10 -07:00 |
Kihwal Lee
|
0719345909
|
Addendum for HADOOP-14146. Use commons Base64 instead of jdk8 Base64.
|
2017-06-23 13:26:29 -05:00 |
Kihwal Lee
|
4c6184b41c
|
Addendum for HADOOP-14146 jdk7 support.
|
2017-06-23 09:57:51 -05:00 |
Daryn Sharp
|
d4115d71b5
|
HADOOP-14146. KerberosAuthenticationHandler should authenticate with SPN in AP-REQ. Contributed by Daryn Sharp
|
2017-06-21 11:05:12 -05:00 |
Daniel Templeton
|
6d7e847cfc
|
HADOOP-14310. RolloverSignerSecretProvider.LOG should be @VisibleForTesting
(Contributed by Arun Shanmugam Kumar via Daniel Templeton)
(cherry picked from commit 86368cc766 )
|
2017-06-12 09:56:35 -07:00 |
Xiao Chen
|
ffaf24e308
|
HADOOP-13174. Add more debug logs for delegation tokens and authentication.
(cherry picked from commit 4a56bde6ba1f72588a25cd96acc76089706cb786)
Conflicts:
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/token/delegation/web/DelegationTokenAuthenticationHandler.java
|
2017-06-08 21:34:09 -07:00 |
Sunil G
|
ec346d6377
|
YARN-6584. Correct license headers in hadoop-common, hdfs, yarn and mapreduce. Contributed by Yeliang Cang.
|
2017-05-23 07:57:36 +05:30 |
Daniel Templeton
|
f20aa38a1d
|
HADOOP-14246. Authentication Tokens should use SecureRandom instead of Random and 256 bit secrets
(Conttributed by Robert Konter via Daniel Templeton)
(cherry picked from commit 4dd6206547 )
|
2017-04-12 11:19:53 -07:00 |
Xiaoyu Yao
|
85083567be
|
HADOOP-13890. Maintain HTTP/host as SPNEGO SPN support and fix KerberosName parsing. Contributed by Xiaoyu Yao.
(cherry picked from commit f5e0bd30fd )
|
2016-12-14 13:59:24 -08:00 |
Xiaoyu Yao
|
48853c7319
|
HADOOP-13565. KerberosAuthenticationHandler#authenticate should not rebuild SPN based on client request. Contributed by Xiaoyu Yao.
(cherry picked from commit 4c38f11cec )
|
2016-12-09 21:38:14 -08:00 |
Andrew Wang
|
6bd600eef2
|
HADOOP-13861. Spelling errors in logging and exceptions for code. Contributed by Grant Sohn.
(cherry picked from commit 7b988e8899 )
Conflicts:
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/io/erasurecode/rawcoder/util/GF256.java
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/KDiag.java
|
2016-12-05 23:21:03 -08:00 |
Xiaoyu Yao
|
9628f3da93
|
Revert "HADOOP-13565. KerberosAuthenticationHandler#authenticate should not rebuild SPN based on client request. Contributed by Xiaoyu Yao."
This reverts commit 874402a295 .
|
2016-11-04 16:06:20 -07:00 |
Benoy Antony
|
b913b62aaf
|
HADOOP-12082. Support multiple authentication schemes via AuthenticationFilter. Contributed by Hrishikesh Gadre.
|
2016-10-25 08:30:02 -07:00 |
Xiaoyu Yao
|
874402a295
|
HADOOP-13565. KerberosAuthenticationHandler#authenticate should not rebuild SPN based on client request. Contributed by Xiaoyu Yao.
(cherry picked from commit 9097e2efe4 )
|
2016-10-13 10:54:51 -07:00 |
Robert Kanter
|
7bfa595679
|
HADOOP-12611. TestZKSignerSecretProvider#testMultipleInit occasionally fail (ebadger via rkanter)
(cherry picked from commit c183b9de8d )
|
2016-10-07 09:37:17 -07:00 |
Wei-Chiu Chuang
|
031d5f6c5b
|
HADOOP-13580. If user is unauthorized, log "unauthorized" instead of "Invalid signed text:". Contributed by Wei-Chiu Chuang.
(cherry picked from commit f6f3a447bf )
|
2016-09-16 14:53:50 -07:00 |
Zhe Zhang
|
00ff3d737c
|
HDFS-9888. Allow reseting KerberosName in unit tests. Contributed by Xiao Chen.
(cherry picked from commit 3e8099a45a )
|
2016-08-11 11:32:54 -07:00 |
Chris Nauroth
|
df2ed6b2c4
|
HADOOP-13422. ZKDelegationTokenSecretManager JaasConfig does not work well with other ZK users in process. Contributed by Sergey Shelukhin.
(cherry picked from commit 255ea45e50 )
|
2016-07-26 15:33:30 -07:00 |
Akira Ajisaka
|
035eea4d12
|
HADOOP-13213. Small Documentation bug with AuthenticatedURL in hadoop-auth. Contributed by Tom Ellis.
This closes #97.
(cherry picked from commit 8a1dccecce )
|
2016-06-11 03:33:19 +09:00 |
Steve Loughran
|
092b199741
|
HADOOP-12751. While using kerberos Hadoop incorrectly assumes names with '@' to be non-simple. (Bolke de Bruin via stevel).
|
2016-05-10 21:33:11 +01:00 |
Steve Loughran
|
8d11a771b3
|
HADOOP-13026 Should not wrap IOExceptions into a AuthenticationException in KerberosAuthenticator. Xuan Gong via stevel
|
2016-04-15 17:43:52 +01:00 |
Andrew Wang
|
2f983b161f
|
HADOOP-12951. Improve documentation on KMS ACLs and delegation tokens. Contributed by Xiao Chen.
(cherry picked from commit 594c70f779 )
|
2016-04-07 23:50:36 -07:00 |
Akira Ajisaka
|
b4fbc22688
|
HADOOP-12902. JavaDocs for SignerSecretProvider are out-of-date in AuthenticationFilter. Contributed by Gabor Liptak.
(cherry picked from commit acca149ec9 )
|
2016-03-31 16:05:51 +09:00 |
Benoy Antony
|
4dd02f9484
|
HADOOP-12929. JWTRedirectAuthenticationHandler must accommodate null expiration time. Contributed by Larry McCay.
(cherry picked from commit e7ed05e4f5 )
|
2016-03-21 13:21:54 -07:00 |
Li Lu
|
92125e6057
|
HADOOP-12906. AuthenticatedURL should convert a 404/Not Found into an FileNotFoundException. (Steve Loughran via gtcarrera9)
(cherry-picked from commit 9a79b738c5 )
|
2016-03-10 11:39:44 -08:00 |
Masatake Iwasaki
|
722182fdfb
|
HADOOP-12470. In-page TOC of documentation should be automatically generated by doxia macro (iwasakims)
(cherry picked from commit cbd31328a6 )
Conflicts:
hadoop-common-project/hadoop-common/src/site/markdown/CommandsManual.md
hadoop-common-project/hadoop-common/src/site/markdown/UnixShellGuide.md
|
2016-03-04 14:12:44 +09:00 |
cnauroth
|
92e49cdd04
|
HADOOP-12716. KerberosAuthenticator#doSpnegoSequence use incorrect class to determine isKeyTab in JDK8. Contributed by Xiaoyu Yao.
(cherry picked from commit d6b181c6fa )
|
2016-02-24 14:05:55 -08:00 |
Akira Ajisaka
|
4edd7bd820
|
HADOOP-12731. Remove useless boxing/unboxing code. Contributed by Kousuke Saruta.
(cherry picked from commit 736eb17a79 )
|
2016-01-25 13:48:28 +09:00 |
Benoy Antony
|
4e5f77b7f5
|
HADOOP-12587. Hadoop AuthToken refuses to work without a maxinactive attribute in issued token. (Benoy Antony)
(cherry picked from commit dec8dfdfa6 )
|
2016-01-09 13:43:15 -08:00 |
mattf
|
472541291b
|
HADOOP-12617. SPNEGO authentication request to non-default realm gets default realm name inserted in target server principal. (mattf)
|
2015-12-08 17:35:25 -08:00 |
Haohui Mai
|
def7490b29
|
HADOOP-12181. Fix intermittent test failure of TestZKSignerSecretProvider. Contributed by Masatake Iwasaki.
|
2015-11-22 16:56:22 -08:00 |
Steve Loughran
|
10932aad29
|
HADOOP-11628. SPNEGO auth does not work with CNAMEs in JDK8. (Daryn Sharp via stevel).
|
2015-10-18 11:45:11 +01:00 |
cnauroth
|
6774a1732a
|
HADOOP-12481. JWTRedirectAuthenticationHandler doesn't Retain Original Query String. Contributed by Larry McCay.
(cherry picked from commit a121fa1d39 )
|
2015-10-15 16:45:08 -07:00 |
Steve Loughran
|
988749e6ea
|
HADOOP-12087. [JDK8] Fix javadoc errors caused by incorrect or illegal tags. (Akira AJISAKA via stevel).
|
2015-09-13 14:25:06 +01:00 |
Xiaoyu Yao
|
a7e5a88b59
|
HADOOP-12347. Fix mismatch parameter name in javadocs of AuthToken#setMaxInactives. Contributed by Xiaoyu Yao
(cherry picked from commit caa636bf10 )
Conflicts:
hadoop-common-project/hadoop-common/CHANGES.txt
|
2015-08-21 16:41:34 -07:00 |
Benoy Antony
|
d84e4a90d0
|
hadoop-12050. Enable MaxInactiveInterval for hadoop http auth token. Contributed by Huizhi Lu.
(cherry picked from commit 71aedfabf3 )
|
2015-08-18 13:53:47 -07:00 |
Benoy Antony
|
aef9ab2128
|
HADOOP-12049. Control http authentication cookie persistence via configuration. Contributed by Huizhi Lu.
(cherry picked from commit a815cc157c )
|
2015-06-24 16:41:23 -07:00 |
Andrew Wang
|
52ff1610cd
|
HADOOP-12037. Fix wrong classname in example configuration of hadoop-auth documentation. Contributed by Masatake Iwasaki.
(cherry picked from commit 990078b927 )
|
2015-06-01 18:05:06 -07:00 |
Akira Ajisaka
|
77587fe198
|
HADOOP-11663. Remove description about Java 6 from docs. Contributed by Masatake Iwasaki.
(cherry picked from commit b9cebfc0ba )
|
2015-05-12 00:31:28 +09:00 |
Robert Kanter
|
f00815ac8a
|
HADOOP-11870. [JDK8] AuthenticationFilter, CertificateUtil, SignerSecretProviders, KeyAuthorizationKeyProvider Javadoc issues (rkanter)
(cherry picked from commit 9fec02c069 )
|
2015-04-27 13:26:00 -07:00 |
Steve Loughran
|
4f9b24b90a
|
HADOOP-11864. JWTRedirectAuthenticationHandler breaks java8 javadocs. (Larry McCay via stevel)
|
2015-04-23 09:06:02 +01:00 |
Jason Lowe
|
feb995fc50
|
HADOOP-11868. Invalid user logins trigger large backtraces in server log. Contributed by Chang Li
(cherry picked from commit 0ebe84d30a )
|
2015-04-22 20:57:46 +00:00 |
Jitendra Pandey
|
db4419df6b
|
HADOOP-11859. PseudoAuthenticationHandler fails with httpcomponents v4.4. Contributed by Eugene Koifman.
|
2015-04-22 10:02:02 -07:00 |
Steve Loughran
|
6d8a49dd68
|
HADOOP-11846 TestCertificateUtil.testCorruptPEM failing on Jenkins JDK8. (Larry McCay via stevel)
|
2015-04-21 22:38:27 +01:00 |
Haohui Mai
|
dbe1cec0da
|
HADOOP-11837. AuthenticationFilter should destroy SignerSecretProvider in Tomcat deployments. Contributed by Bowen Zhang.
|
2015-04-17 10:59:54 -07:00 |
Owen O'Malley
|
c16af2f6f8
|
HADOOP-11717. Support JWT tokens for web single sign on to the Hadoop
servers. (Larry McCay via omalley)
|
2015-04-07 08:17:10 -07:00 |
Haohui Mai
|
24d879026d
|
HADOOP-11754. RM fails to start in non-secure mode due to authentication filter failure. Contributed by Haohui Mai.
|
2015-03-30 11:44:30 -07:00 |
Haohui Mai
|
c261d35b75
|
HADOOP-11748. The secrets of auth cookies should not be specified in configuration in clear text. Contributed by Li Lu and Haohui Mai.
|
2015-03-26 17:35:28 -07:00 |
Haohui Mai
|
c62840d531
|
Addendum for HADOOP-10670.
|
2015-03-25 12:30:12 -07:00 |