Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-12588

Use the login user for authorization if kerberos is disabled

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 4.3.0
    • Fix Version/s: 4.3.1
    • Component/s: Security
    • Labels:
    • Release Notes:
      Fixed a bug that authorization cannot be turned on if kerberos is disabled
    • Rank:
      1|i007sv:

      Description

      We try to bypass the master principal, which is the value of cdap.master.kerberos.principal to access the system namespace. If kerberos is disabled, this value is null and it will throw exception, we should use login user in this case.

        Attachments

          Activity

            People

            • Assignee:
              yaojie Yaojie Feng
              Reporter:
              yaojie Yaojie Feng
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: