Authentication for Hadoop HTTP web-consoles ---Hadoop 1.2.1
来源:互联网 发布:暗黑修仙数据库 编辑:程序博客网 时间:2024/06/05 07:36
Configuration
The following properties should be in the core-site.xml of all the nodes in the cluster.
hadoop.http.filter.initializers: add to this property the org.apache.hadoop.security.AuthenticationFilterInitializer initializer class.
hadoop.http.authentication.type: Defines authentication used for the HTTP web-consoles. The supported values are: simple | kerberos | #AUTHENTICATION_HANDLER_CLASSNAME#. The dfeault value is simple.
hadoop.http.authentication.token.validity: Indicates how long (in seconds) an authentication token is valid before it has to be renewed. The default value is 36000.
hadoop.http.authentication.signature.secret.file: The signature secret file for signing the authentication tokens. If not set a random secret is generated at startup time. The same secret should be used for all nodes in the cluster, JobTracker, NameNode, DataNode and TastTracker. The default value is ${user.home}/hadoop-http-auth-signature-secret. IMPORTANT: This file should be readable only by the Unix user running the daemons.
hadoop.http.authentication.cookie.domain: The domain to use for the HTTP cookie that stores the authentication token. In order to authentiation to work correctly across all nodes in the cluster the domain must be correctly set. There is no default value, the HTTP cookie will not have a domain working only with the hostname issuing the HTTP cookie.
IMPORTANT: when using IP addresses, browsers ignore cookies with domain settings. For this setting to work properly all nodes in the cluster must be configured to generate URLs with hostname.domain names on it.
hadoop.http.authentication.simple.anonymous.allowed: Indicates if anonymous requests are allowed when using 'simple' authentication. The default value is true
hadoop.http.authentication.kerberos.principal: Indicates the Kerberos principal to be used for HTTP endpoint when using 'kerberos' authentication. The principal short name must be HTTP per Kerberos HTTP SPNEGO specification. The default value is HTTP/localhost@$LOCALHOST.
The following properties should be in the core-site.xml of all the nodes in the cluster.
hadoop.http.filter.initializers: add to this property the org.apache.hadoop.security.AuthenticationFilterInitializer initializer class.
hadoop.http.authentication.type: Defines authentication used for the HTTP web-consoles. The supported values are: simple | kerberos | #AUTHENTICATION_HANDLER_CLASSNAME#. The dfeault value is simple.
hadoop.http.authentication.token.validity: Indicates how long (in seconds) an authentication token is valid before it has to be renewed. The default value is 36000.
hadoop.http.authentication.signature.secret.file: The signature secret file for signing the authentication tokens. If not set a random secret is generated at startup time. The same secret should be used for all nodes in the cluster, JobTracker, NameNode, DataNode and TastTracker. The default value is ${user.home}/hadoop-http-auth-signature-secret. IMPORTANT: This file should be readable only by the Unix user running the daemons.
hadoop.http.authentication.cookie.domain: The domain to use for the HTTP cookie that stores the authentication token. In order to authentiation to work correctly across all nodes in the cluster the domain must be correctly set. There is no default value, the HTTP cookie will not have a domain working only with the hostname issuing the HTTP cookie.
IMPORTANT: when using IP addresses, browsers ignore cookies with domain settings. For this setting to work properly all nodes in the cluster must be configured to generate URLs with hostname.domain names on it.
hadoop.http.authentication.simple.anonymous.allowed: Indicates if anonymous requests are allowed when using 'simple' authentication. The default value is true
hadoop.http.authentication.kerberos.principal: Indicates the Kerberos principal to be used for HTTP endpoint when using 'kerberos' authentication. The principal short name must be HTTP per Kerberos HTTP SPNEGO specification. The default value is HTTP/localhost@$LOCALHOST.
hadoop.http.authentication.kerberos.keytab: Location of the keytab file with the credentials for the Kerberos principal used for the HTTP endpoint. The default value is ${user.home}/hadoop.keytab.i
转载:http://hadoop.apache.org/docs/stable1/HttpAuthentication.html
阅读全文
0 0
- Authentication for Hadoop HTTP web-consoles ---Hadoop 1.2.1
- hadoop2.2.0 core-site.xml--HTTP web-consoles Authentication
- Hadoop Authentication
- HADOOP 安全体系-Authentication 1
- 【Hadoop】Simple Authentication
- Authorization and Authentication In Hadoop
- Hadoop Security Authentication Terminology --Kerberos
- Common-Hadoop HTTP web控制台认证
- NTLM Authentication Scheme for HTTP
- Authentication in HDFS and Hadoop common
- hadoop-1.2.1 for CentOS 6.3 64bit
- Hadoop-2.2.0中文文档——Common-Hadoop HTTP web控制台认证
- HTTP Basic Authentication for RESTFul Service
- hadoop 1.2.1 hadoop-env.sh
- http--hadoop关注
- Hadoop HDFS over HTTP
- Hadoop HDFS over HTTP
- hadoop 学习笔记(1)-for linux install
- 集中式的内容分发网络本就是错误的互联网设计,账号登录机制更是垃圾
- hadoop学习笔记-java操作HDFS
- leetcode_587.Erect the Fence?待解决
- hdu5950(递推+矩阵快速幂函) 2016亚洲区域赛沈阳站C题(铜牌题)
- HDU1757(矩阵快速幂+简单的矩阵构造)
- Authentication for Hadoop HTTP web-consoles ---Hadoop 1.2.1
- okHttp封装
- hadoop入门六(基础知识入门)
- ACM-10月15日周日周末训练心得
- java根据经纬度获取该经纬度的省市区
- SQL语句范例之表、空间、特权和dump
- 批处理命令Start的使用介绍
- 分析Android 搜狗输入法在微信和QQ中发送图片和表情
- 先序遍历用于优化树形分组背包问题