Gregory Chanan created HADOOP-10193:
---------------------------------------
Summary: hadoop-auth's PseudoAuthenticationHandler can consume
getInputStream
Key: HADOOP-10193
URL: https://issues.apache.org/jira/browse/HADOOP-10193
Project: Hadoop Common
Issue Type: Bug
Components: security
Reporter: Gregory Chanan
Assignee: Gregory Chanan
Priority: Minor
Fix For: 3.0.0
I'm trying to use the AuthenticationFilter in front of Apache Solr. The issue
I'm running into is that the PseudoAuthenticationHandler calls
ServletRequest.getParameter which affects future calls to
ServletRequest.getInputStream. I.e. from the javadoc:
{code}
If the parameter data was sent in the request body, such as occurs with an HTTP
POST request, then reading the body directly via getInputStream() or
getReader() can interfere with the execution of this method.
{code}
Solr calls getInputStream after the filter and errors result.
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
