[HIVE-22539] HiveServer2 SPNEGO authentication should skip if authorization header is empty - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.0.0-alpha-1
Component/s: HiveServer2
Labels:
None

Release Note:
HiveServer2 will check if the Authorization header is present and not empty before checking SPNEGO authentication.

Description

Currently HiveServer2 SPNEGO authentication waits until setting up Kerberos before checking header. This can be checked up front to avoid doing any Kerberos related work if the header is empty. This is helpful in a lot of cases since typically the first request is empty with the client waiting for a 401 before returning the Authorization header.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HIVE-22539.1.patch
03/Dec/19 01:18
10 kB
Kevin Risden
HIVE-22539.2.patch
03/Dec/19 19:03
10 kB
Kevin Risden
HIVE-22539.3.patch
08/Dec/19 00:59
10 kB
Kevin Risden
HIVE-22539.4.patch
07/Feb/20 22:14
10 kB
Kevin Risden
HIVE-22539.5.patch
14/Feb/20 18:22
10 kB
Kevin Risden
HIVE-22539.6.patch
16/Mar/20 14:10
10 kB
Kevin Risden
HIVE-22539.7.patch
16/Mar/20 14:13
10 kB
Kevin Risden

Activity

People

Assignee:: Kevin Risden

Reporter:: Kevin Risden

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 26/Nov/19 01:06

Updated:: 17/Nov/22 08:50

Resolved:: 18/Mar/20 06:00