Clone
 

alejandro abdelnur <tucu@apache.org> in hadoop

HADOOP-11017. KMS delegation token secret manager should be able to use zookeeper as store. (asuresh via tucu)

HADOOP-11017. KMS delegation token secret manager should be able to use zookeeper as store. (asuresh via tucu)

(cherry picked from commit db890eef3208cc557476fa510f7a253ba22bc68a)

Conflicts:

hadoop-project/pom.xml

KMS: Support for multiple Kerberos principals. (tucu)

KMS: Support for multiple Kerberos principals. (tucu)

(cherry picked from commit fad4cd85b313a1d2378adcf03cad67e946a12cd5)

HADOOP-11016. KMS should support signing cookies with zookeeper secret manager. (tucu)

(cherry picked from commit 123f20d42f6acffcde05392d689acd91a82462db)

Conflicts:

hadoop-common-project/hadoop-common/CHANGES.txt

    • -0
    • +5
    /hadoop-common-project/hadoop-kms/pom.xml
HADOOP-11016. KMS should support signing cookies with zookeeper secret manager. (tucu)

    • -0
    • +5
    /hadoop-common-project/hadoop-kms/pom.xml
Revert "HADOOP-11016. KMS should support signing cookies with zookeeper secret manager. (tucu)"

This reverts commit 0a495bef5cd675dce4c928cb5331588bb198accf.

    • -5
    • +0
    /hadoop-common-project/hadoop-kms/pom.xml
Revert "HADOOP-10982"

This reverts commit d9a86031a077184d429dd5463e7da156df112011.

HADOOP-11062. CryptoCodec testcases requiring OpenSSL should be run only if -Pnative is used. (asuresh via tucu)

    • -0
    • +7
    /hadoop-hdfs-project/hadoop-hdfs/pom.xml
HADOOP-11062. CryptoCodec testcases requiring OpenSSL should be run only if -Pnative is used. (asuresh via tucu)

Conflicts:

hadoop-hdfs-project/hadoop-hdfs/pom.xml

    • -0
    • +11
    /hadoop-hdfs-project/hadoop-hdfs/pom.xml
HADOOP-11097. kms docs say proxyusers, not proxyuser for config params. (clamb via tucu)

HADOOP-11097. kms docs say proxyusers, not proxyuser for config params. (clamb via tucu)

HADOOP-11099. KMS return HTTP UNAUTHORIZED 401 on ACL failure. (tucu)

HADOOP-11099. KMS return HTTP UNAUTHORIZED 401 on ACL failure. (tucu)

(cherry picked from commit e4ddb6da15420d5c13ec7ec99fed1e44b32290b0)

HADOOP-11016. KMS should support signing cookies with zookeeper secret manager. (tucu)

    • -0
    • +5
    /hadoop-common-project/hadoop-kms/pom.xml
HADOOP-11096. KMS: KeyAuthorizationKeyProvider should verify the keyversion belongs to the keyname on decrypt. (tucu)

HADOOP-11096. KMS: KeyAuthorizationKeyProvider should verify the keyversion belongs to the keyname on decrypt. (tucu)

HDFS-7006. Test encryption zones with KMS. (Anthony Young-Garner and tucu)

    • -1
    • +24
    /hadoop-common-project/hadoop-kms/pom.xml
    • -0
    • +13
    /hadoop-hdfs-project/hadoop-hdfs/pom.xml
HDFS-7006. Test encryption zones with KMS. (Anthony Young-Garner and tucu)

    • -1
    • +24
    /hadoop-common-project/hadoop-kms/pom.xml
    • -0
    • +13
    /hadoop-hdfs-project/hadoop-hdfs/pom.xml
HADOOP-10868. Addendum

HADOOP-10868. Addendum

HADOOP-10868. AuthenticationFilter should support externalizing the secret for signing and provide rotation support. (rkanter via tucu)

  1. … 4 more files in changeset.
HADOOP-10868. AuthenticationFilter should support externalizing the secret for signing and provide rotation support. (rkanter via tucu)

  1. … 4 more files in changeset.
HADOOP-11083. After refactoring of HTTP proxyuser to common, doAs param is case sensitive. (tucu)

HADOOP-11083. After refactoring of HTTP proxyuser to common, doAs param is case sensitive. (tucu)

HADOOP-10758. KMS: add ACLs on per key basis. (tucu)

HADOOP-10758. KMS: add ACLs on per key basis. (tucu)

HADOOP-9989. Bug introduced in HADOOP-9374, which parses the -tokenCacheFile as binary file but set it to the configuration as JSON file. (zxu via tucu)

HADOOP-9989. Bug introduced in HADOOP-9374, which parses the -tokenCacheFile as binary file but set it to the configuration as JSON file. (zxu via tucu)