[HADOOP-13441] Document LdapGroupsMapping keystore password properties - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.6.0
Fix Version/s: 2.9.0, 3.0.0-alpha1
Component/s: security
Labels:
- documentation

Description

A few properties are not documented.
hadoop.security.group.mapping.ldap.ssl.keystore.password
This property is used as an alias to get password from credential providers, or, fall back to using the value as password in clear text. There is also a caveat that credential providers can not be a HDFS-based file system, as mentioned in ~~HADOOP-11934~~, to prevent cyclic dependency issue.
This should be documented in core-default.xml and GroupsMapping.md

hadoop.security.credential.clear-text-fallback
This property controls whether or not to fall back to storing credential password as cleartext.
This should be documented in core-default.xml.

hadoop.security.credential.provider.path
This is mentioned in CredentialProvider API Guide, but not in core-default.xml

The "Supported Features" in CredentialProvider API Guide should link back to GroupsMapping.md#LDAP Groups Mapping

hadoop.security.credstore.java-keystore-provider.password-file
This is the password file to protect credential files.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HADOOP-13441.001.patch
01/Aug/16 06:15
5 kB
Yuanbo Liu
HADOOP-13441.002.patch
01/Aug/16 07:32
6 kB
Yuanbo Liu
HADOOP-13441.003.patch
04/Aug/16 05:41
8 kB
Yuanbo Liu
HADOOP-13441.004.patch
10/Aug/16 03:49
14 kB
Yuanbo Liu
HADOOP-13441.005.patch
11/Aug/16 02:59
14 kB
Yuanbo Liu

Activity

People

Assignee:: Yuanbo Liu

Reporter:: Wei-Chiu Chuang

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 29/Jul/16 17:14

Updated:: 02/Oct/19 17:15

Resolved:: 11/Aug/16 19:05