[
https://issues.apache.org/jira/browse/HIVE-6697?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14051130#comment-14051130
]
Lefty Leverenz commented on HIVE-6697:
--------------------------------------
*hive.server2.authentication.spnego.keytab* and
*hive.server2.authentication.spnego.principal* are documented in the wiki here:
* [Configuration Properties -- hive.server2.authentication.spnego.keytab |
https://cwiki.apache.org/confluence/display/Hive/Configuration+Properties#ConfigurationProperties-hive.server2.authentication.spnego.keytab]
* [Configuration Properties -- hive.server2.authentication.spnego.principal |
https://cwiki.apache.org/confluence/display/Hive/Configuration+Properties#ConfigurationProperties-hive.server2.authentication.spnego.principal]
I added a comment to HIVE-6586 so they won't get lost in the shuffle when
HIVE-6037 changes HiveConf.java.
> HiveServer2 secure thrift/http authentication needs to support SPNego
> ----------------------------------------------------------------------
>
> Key: HIVE-6697
> URL: https://issues.apache.org/jira/browse/HIVE-6697
> Project: Hive
> Issue Type: Improvement
> Components: HiveServer2
> Reporter: Dilli Arumugam
> Assignee: Dilli Arumugam
> Fix For: 0.13.0
>
> Attachments: HIVE-6697.1.patch, HIVE-6697.2.patch, HIVE-6697.3.patch,
> HIVE-6697.4.patch, hive-6697-req-impl-verify.md
>
>
> Looking to integrating Apache Knox to work with HiveServer2 secure
> thrift/http.
> Found that thrift/http uses some form of Kerberos authentication that is not
> SPNego. Considering it is going over http protocol, expected it to use SPNego
> protocol.
> Apache Knox is already integrated with WebHDFS, WebHCat, Oozie and HBase
> Stargate using SPNego for authentication.
> Requesting that HiveServer2 secure thrift/http authentication support SPNego.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
