[
https://issues.apache.org/jira/browse/HIVE-14888?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15546652#comment-15546652
]
Thomas Rega commented on HIVE-14888:
------------------------------------
Looking over the code in UserGroupInformation, it looks like both that class
and hive are currently doing the same thing. In the UserGroupInformation
initialize() method, there is a useKerberos boolean which is set in the case
where the string is "kerberos". Do we need this code duplicated in hive?
> SparkClientImpl checks for "kerberos" string in hiveconf only when
> determining whether to use keytab file.
> ----------------------------------------------------------------------------------------------------------
>
> Key: HIVE-14888
> URL: https://issues.apache.org/jira/browse/HIVE-14888
> Project: Hive
> Issue Type: Bug
> Components: spark-branch
> Affects Versions: 2.1.0
> Reporter: Thomas Rega
> Assignee: Thomas Rega
> Attachments: HIVE-14888.1-spark.patch
>
> Original Estimate: 5m
> Remaining Estimate: 5m
>
> The SparkClientImpl will only provide a principal and keytab argument if the
> HADOOP_SECURITY_AUTHENTICATION in hive conf is set to "kerberos". This will
> not work on clusters with Hadoop security enabled that are not configured as
> "kerberos", for example, a cluster which is configured for "ldap".
> The solution is to call UserGroupInformation.isSecurityEnabled() instead.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
