Home | About | Sematext search-lucene.com search-hadoop.com
 Search Hadoop and all its subprojects:

Switch to Threaded View
MapReduce, mail # user - hadoop web UI security


Copy link to this message
-
hadoop web UI security
Visioner Sadak 2013-09-11, 07:46
Hello friends i m using the below configuration to hide hadoop web UI  the
problem is that when i access

http://192.34.8.8:50070/    it  works properly and blocks access but when i
use
http://192.34.8.8:50070/dfshealth.jsp?user.name=blahblahh(anyusername)......
it failes and allows access even if i set my signature
username as hadoopuser

its allowing  access for any  username
<property>
<name>hadoop.http.filter.initializers</name>
 <value>org.apache.hadoop.security.AuthenticationFilterInitializer</value>
</property>

<property>
<name>hadoop.http.authentication.type</name>
 <value>simple</value>
</property>

<property>
 <name>hadoop.http.authentication.token.validity</name>
 <value>60</value>
</property>

<property>
<name>hadoop.http.authentication.signature.secret.file</name>
<value>/home/hadoop/hadoop-0.23.3/conf/security/username</value>
</property>

<property>
<name>hadoop.http.authentication.cookie.domain</name>
<value>
</value>
</property>

<property>
<name>hadoop.http.authentication.simple.anonymous.allowed</name>
<value>false</value>
</property>